As you may or may not know, MS decided to leave out of Windows Server 2003, any type of control mechanism for concurrent user logins. There is no method (that we have been able to find) to prevent a user from logging in on more than one machine at a time. This is a security issue in that employees who come in on the weekend and bring their children with them can log on to another machine as well as their own and let the kiddies “play”. Since all users have admin rights on workstations you can see this would be a problem. Has anyone dealt with this situation and come up with an answer? We tried using the information in KB-237282 but it didn’t work. And an MCSE advised against using Cconnect.exe from Windows 2000 (KB-260364)though we’re not sure why, perhaps he just didn’t want to recommend an untried solution. So where does that leave us. Any tried and true solutions would be appreciated.
