Solved

kill all RDP sessions from all domain joined servers for a specific user in AD

Posted on 2016-08-29
4
99 Views
Last Modified: 2016-09-08
Hello Experts,

I have a customer who his admin account is being locked from AD very random. After checking all security logs, more specifically for 4740 events, we can identify the source of the locked accounts appears to be a domain controller in Azure. My client has a hybrid AD-Azure and Office 365- Exchange 2010.



So, I've been looking for a tool that can kill all RDP sessions of a user named Jdoe for all Windows servers in a domain.



Are you aware of such as that tool, script, or PowerShell cmdlet that kills all RDP sessions from all windows servers in a domain?



If so, can you please provide instructions step by step to perform the tasks



Please, make sure to test your script, cmdlet, or tool, and send screenshots with results



Thanks
0
Comment
Question by:Jerry Seinfield
  • 2
  • 2
4 Comments
 
LVL 6

Accepted Solution

by:
Ganesamoorthy S earned 500 total points
ID: 41775094
configure timeout session through GPO to fix this issue permanently

https://technet.microsoft.com/en-us/library/cc754272(v=ws.11).aspx

or use below command to kill the session

quser /server:servername

and notedown the session

logoff /server:servername session ID
1
 

Author Comment

by:Jerry Seinfield
ID: 41775189
so, the GPO will be applied to only this user?
0
 
LVL 6

Expert Comment

by:Ganesamoorthy S
ID: 41775195
you can configure this for user OU or server OU and configure Computer Configuration and the User Configuration policy settings
0
 

Author Comment

by:Jerry Seinfield
ID: 41775204
I would like to clarify, that I would like to be able to close all RDP sessions from all servers only to one user.

can you please elaborate on this?
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Synchronize a new Active Directory domain with an existing Office 365 tenant
This article explains how to prepare an HTML email signature template file containing dynamic placeholders for users' Azure AD data. Furthermore, it explains how to use this file to remotely set up a department-wide email signature policy in Office …
In this Micro Tutorial viewers will learn how to use Windows Server Backup to create full image of their system. Tutorial shows how to install Windows Server Backup Feature on Windows 2012R2 and how to configure scheduled Bare Metal Recovery backup.…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question