Restrict logon times

The log on hours would work but for people who get email on their cell phones would not work. Is there another way to restrict log in during a specific time?
LVL 2
stlhostAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
VB ITSConnect With a Mentor Specialist ConsultantCommented:
Providing that your Exchange server is on-premise and not based in the cloud then there's no real graceful solution for your question without resorting to third party software. Enabling logon hours restrictions prevents any soft of AD authentication during these periods.

May I ask why you want to restrict logins? Only reason I ask is if it's for some sort of legacy database maintenance that requires all users to be logged off in order to run then maybe we can look other ways of achieving this.
0
 
dan_blagutConnect With a Mentor Commented:
Hello
 
in fact restrict time block also OWA/active sync. you can't dissociate unles you use Good for Enterprise.
(http://community.spiceworks.com/topic/173678-activesync-iphones-and-windows-logon-)

Dan
0
 
Lionel MMConnect With a Mentor Small Business IT ConsultantCommented:
If you want to prevent logging onto a domain you can use "net user" but if you users need to logon to the domain to get exchange email then this will not work. However if your exchange mail is hosted or cloud based (like Office365) then it will. I use this command in a batch file
for /F "tokens=1 delims=," %%i in (C:\Utils\UserList.csv) do net user %%i /time:monday-friday,8am-6pm
I have a list of users that I need to restrict in C:\Utils\UserList.csv (and I can add, change, delete users as needed) and then I can easily change /time:monday-friday,8am-6pm as needed and have it apply to all users in my list with just a few quick changes. Hope it can help you too--if not let me know what more specifically you need.
0
 
CoralonConnect With a Mentor Commented:
One possibility might be to create a group policy to prevent Interactive Logins, apply it to that specific group, and then use whatever scripting method to drop people in and out of that group during that time.

What it won't do is kick people out who are logged in on workstations, TS/CTX, etc. For them, you'd have to write another script to go out to your machines and kick them out.  

Coralon
0
 
stlhostAuthor Commented:
Thanks everyone for the help. Basically this was to keep people from logging in and working when they shouldn't be off the clock
0
All Courses

From novice to tech pro — start learning today.