|Posted by:||Kelly Armitage (KellyArmita…@discussions.microsoft.com)|
|Date:||Sun, 11 Nov 2007|
I have a domain controller running Server 2003. There are several user
accounts specified with limited logon times. I accomplished through the user
properties/account tab in AD.
It works fine to prevent someone from logging in when not during the
acceptable times I have specified (from an XP SP2 machine), however it does
not boot them out when their logon time has expired. I have enable "force
shutdown when time expires" from multiple places, including group policy,
domain security policy and domain controller security policy yet it never
does boot the user off ..... only prevent them from logging in the first
place. Not much good if they can just stay connected beyond their permitted
times. Does anyone have any suggestions as to what I am missing? What else
I can try or check?
Thanks everyone :)