Solved

Restrict logon times

Posted on 2015-01-02
5
89 Views
Last Modified: 2015-01-05
The log on hours would work but for people who get email on their cell phones would not work. Is there another way to restrict log in during a specific time?
0
Comment
Question by:stlhost
5 Comments
 
LVL 21

Assisted Solution

by:dan_blagut
dan_blagut earned 50 total points
ID: 40528951
Hello
 
in fact restrict time block also OWA/active sync. you can't dissociate unles you use Good for Enterprise.
(http://community.spiceworks.com/topic/173678-activesync-iphones-and-windows-logon-)

Dan
0
 
LVL 24

Assisted Solution

by:lionelmm
lionelmm earned 50 total points
ID: 40529039
If you want to prevent logging onto a domain you can use "net user" but if you users need to logon to the domain to get exchange email then this will not work. However if your exchange mail is hosted or cloud based (like Office365) then it will. I use this command in a batch file
for /F "tokens=1 delims=," %%i in (C:\Utils\UserList.csv) do net user %%i /time:monday-friday,8am-6pm
I have a list of users that I need to restrict in C:\Utils\UserList.csv (and I can add, change, delete users as needed) and then I can easily change /time:monday-friday,8am-6pm as needed and have it apply to all users in my list with just a few quick changes. Hope it can help you too--if not let me know what more specifically you need.
0
 
LVL 24

Accepted Solution

by:
VB ITS earned 350 total points
ID: 40529114
Providing that your Exchange server is on-premise and not based in the cloud then there's no real graceful solution for your question without resorting to third party software. Enabling logon hours restrictions prevents any soft of AD authentication during these periods.

May I ask why you want to restrict logins? Only reason I ask is if it's for some sort of legacy database maintenance that requires all users to be logged off in order to run then maybe we can look other ways of achieving this.
0
 
LVL 24

Assisted Solution

by:Coralon
Coralon earned 50 total points
ID: 40529440
One possibility might be to create a group policy to prevent Interactive Logins, apply it to that specific group, and then use whatever scripting method to drop people in and out of that group during that time.

What it won't do is kick people out who are logged in on workstations, TS/CTX, etc. For them, you'd have to write another script to go out to your machines and kick them out.  

Coralon
0
 
LVL 2

Author Comment

by:stlhost
ID: 40531343
Thanks everyone for the help. Basically this was to keep people from logging in and working when they shouldn't be off the clock
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

To effectively work with Diskpart on a Server Core, it is necessary to write some small batch script's, because you can't execute diskpart in a remote powershell session. To get startet, place the Diskpart batch script's into a share on your loca…
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now