Limiting simultaneous logins

Similar Messages

• Limit # of simultaneous logins?

  Is it possible (or even practical) to try to do this?
  My client wants *light* security on a series of pages, and
  would like to
  have two categories of passwords -
  1. A single user, i.e., no simultaneous logins.
  2. A group user, i.e., multiple simultaneous logins, up to
  but not beyond,
  some ceiling.
  With PHP/MySQL is this feasible?
  Murray --- ICQ 71997575
  Adobe Community Expert
  (If you *MUST* email me, don't LAUGH when you do so!)
  ==================
  http://www.dreamweavermx-templates.com
  - Template Triage!
  http://www.projectseven.com/go
  - DW FAQs, Tutorials & Resources
  http://www.dwfaq.com - DW FAQs,
  Tutorials & Resources
  http://www.macromedia.com/support/search/
  - Macromedia (MM) Technotes
  ==================

  I can't speak for the PHP universe, but principles tend to
  translate so I'll
  take a shot anyway.
  In ASP, you've got session_onstart and session_onend in your
  global.asa
  file. Obviously, if the user does not log out and just closes
  the browser,
  the session will remain active until it times out, but
  session_onend will
  run regardless of how the session is ended. The
  session_onstart and
  session_onend can be used to edit application variables
  (which are truly
  global and only fall out of scope when IIS is restarted). The
  application
  variable might, for instance, be named after the user ID and
  contain the
  number of current active sessions. Session_onstart is set to
  create or
  increment; session_onend is used to decrement.
  In the case of a user closing the browser, you'd have a login
  unavailable
  until the session timeout is reached. Typically, explaining
  this to users
  is good enough and everyone understands that if they make a
  mistake (or have
  the computer crash or something), they may need to wait 20
  minutes before
  they're allowed to log in again (assuming you're using the
  default 20 minute
  timeout). As long as it's known up front and not a nasty
  surprise, people
  are generally understanding.
  I don't think PHP has application variables, but you could do
  the same with
  a text file or a database table (with the bonus that a
  database table can be
  used to store session ID, login, logout, etc and give you all
  kids of
  history info). The crux of the matter is finding out if a PHP
  application
  has the equivalent of a global.asa and/or session_onstart and
  session_onend
  event handlers that are handled by the web server and not any
  particular web
  page. Sorry I can't be of more help there.
  "Murray *ACE*" <[email protected]> wrote
  in message
  news:[email protected]...
  > That was exactly what I told her.
  >
  > So - how would you approach this problem, then? One
  solution is to
  > monitor simultaneous logins, and that clearly is
  impractical.
  >
  > How would you enable 'group' access if not this way?
  >
  > --
  > Murray --- ICQ 71997575
  > Adobe Community Expert
  > (If you *MUST* email me, don't LAUGH when you do so!)
  > ==================
  >
  http://www.dreamweavermx-templates.com
  - Template Triage!
  >
  http://www.projectseven.com/go
  - DW FAQs, Tutorials & Resources
  >
  http://www.dwfaq.com - DW FAQs,
  Tutorials & Resources
  >
  http://www.macromedia.com/support/search/
  - Macromedia (MM) Technotes
  > ==================
  >
  >
  > "Gary White" <[email protected]> wrote in
  message
  > news:[email protected]...
  >> On Thu, 6 Sep 2007 10:38:10 -0400, "Murray *ACE*"
  >> <[email protected]> wrote:
  >>
  >>>With PHP/MySQL is this feasible?
  >>
  >>
  >> Not really. Because some users may simply close the
  browser instead of
  >> logging out, you have no reliable method to
  determine who or how many
  >> may still be logged in.
  >>
  >> Gary
  >
  >

• Block simultaneous logins by the same user on wired 802.1x

  Is it possible to block simultaneous logins by the same user, meaning is userX login on port gi1/0/1 and after that the same user (UserX) is trying to login on a different port, it will be blocked.

  Sorry I did not read your original question correctly. So at the moment, you can only restrict the number of concurrent connections for users that are only going through the web authentication process. If you are using EAP-TLS, PEAP, etc, then there is no method to restrict those users from performing multiple authentications on the network.
  Thank you for rating helpful posts!

• Simultaneous login problem

  Hi 
  I am having simultaneous login problems. In the past I have been able to sign into my skype account on both my Mac Book Pro and my Windows 7 desktop PC. However since I had to change my password I can only login into one machine at a time now. Also when I change my password on the desktop PC I can only sign into that skype / computer. Whenever I type the same account name and same exact password on my Mac Book Pro, it says it doesn't recognize my sign-in details but I am 100% sure that I typed it in exactly the same way as I did on my desktop. Another is that when I reset my password on my Mac Book those details won't work on the Desktop PC and vice-versa.
  I would like to know what is the problem in this situation, I am not sure if this is an application error or a networking error where the account details are not signing in from a different IP or MAC address.
  Please and thank you!

  "The load balancing was already functional:"
  Do you have a description how to do that?
  I Would like to know how.
  "so ALL traffic, not going to the LAN network and so over this interface, went out on the DMZ interface, with source IP from LAN."
  If you put the VPN servers behind 1-1 NAT instead they will use the firewall as GW and the VPN clients will get at your remote sites/LAN IF you add routing definitions in VPN config what networks are reachable through VPN.
  Or you keep servers as they are but also add add more routing definitions in VPN AND static routes to each server with the firewall as gw to those remote networks. Default gw will still be through the DMZ IPs though.
  The problem with more than one VPN client from behind same IP address is, with your current server settings, most likely because of the client side NAT router isn't coping with the task. Your public IP VPN server(s) should mean NAT VPN problem is at the other end (customer/client network router/firewall).
  If two VPN clients behind same NAT router connected to different servers at your end, "12.34.56.80" and "12.34.56.81" (both are public IPs?) respectively I believe at least two should be able to connect.
  3G/4G modems isn't an option?
  Maybe try bringing your own tested working portable router (ethernet/wifi maybe includes a VPN client that connect to your servers) to the customer and put it temporarily on their LAN? There are these small new 3G/WiFi routers too. Depends on wether you need to be connected to customer LAN or not.
  Try other VPN solution, SSL or OpenVPN?
  Use both PPTP and L2TP simultaneously (PPTP could be troubelsome if GRE/TCP 1723 passthrough is disabled)?

• Not allow simultaneous login on managed computers using profile mangaer

  Does any one knows how to not allow simultaneous login on managed computers using Profile Manager instead of Workgroup Manager?
  Thanks in advanced

  Hi Folks
  First - thanks for your help.
  Closing this out - here is what I learned:
  1) Needed to ensure my server was Kerberised and that Kerebos was running correctly
  2) Local users have precedence over network so I need to ensure I don't use the same short name. While using the "id" command you may be able to see the network user ID, the local of the same name appears to take precedence.
  3) Using the "kinit" command useful for confirming Kerebos is working correctly
  4) Home directories created - had already done this but what finally got this working was stopping and restarting AFP Service.
  So was able to successfully login to Mac Client using OD username and password - it mounted the network home share just fine on the client, loaded preferences etc.
  Now on to create network users with Mobile Accounts for my laptop users - wish me luck

• Multiple simultaneous logins no longer being prohibited when unchecked

  Since (I think) the most recent raft of software updates were installed, multiple simultaneous logins are no longer being prohibited when the box is unchecked in a user's logon account.
  My users are now logging onto different computers and 'lending' their account to people who are not students.
  Is anyone else experiencing this anomaly since 10.5.7 or thereabouts?

  Figured it out, I just had to restart the server for the changes to take effect.

• Simultaneous Logins; Not Working; Intel & PPC

  So, one of my schools is a mixed 10.4 environment with PPC and Intel iMacs. Everything, including the G4 server is sitting at 10.4.7.
  I do not have mobile accounts and I don't have fast user switching turned on. And of course, "Simultaneous Logins" is turned off for every account.
  My APF clients can go to a PPC machine and login once and then go to an Intel machine and login. They get a slightly different Dock & Safari doesn't play real nice but they're able to login. The same can be said for an AFP client logging into an Intel first and then going to a PPC machine.
  Now, they cannot log in on two PPCs or two Intels at any time and so in that respect, the disabling of simultaneous logins is working. However, I've got a lot of people who will be lazy about logging out as they migrate from computer to computer and it's best if this "feature" actually worked cross-processor...
  Any suggestions? Anyone? ;0)

  Figured it out, I just had to restart the server for the changes to take effect.

• Simultaneous Logins in VPN Concentrator

  Hi,
  The documents indicate that the 'Simultaneous Logins' applies for a single 'Internal User' .
  I have configured a User Group that utilises RADIUS as an authentication method. Was wondering whether the simultaneous login can be applied as well.
  SO what i'm trying to do here is let user authenticate via RADIUS. I want to limit only 1 session per UserID at a time.
  Any ideas ?
  If it cannot be done , what are the workarounds available ?

  There seems to be conflicting documentation regarding the function 'Simultaneous Login'
  In the main documentation
  http://www.cisco.com/en/US/partner/products/hw/vpndevc/ps2284/products_configuration_guide_chapter09186a00803ee1f0.html
  It says Number of Simultaneous Login for a single User
  In the TAC KB
  http://www.ciscotaccc.com/kaidara-advisor/security/showcase?case=K80154467
  It seems like they are referring to number of simultaneous connection within that group.
  So which is it ?

• PLEASE: Increase Creative Cloud Simultaneous Logins to 5x!

  Hi all,
  First of all, I absolutely love Creative Cloud and have been a backer of the "subscription" model from day 1. I love that I am always running the latest version and it is easier on the wallet than large upgrade fees every couple years, for those of us who always stay current. I work in Pro-AV but do it all - video editing, audio engineering, graphics design, web, etc. So, I use the whole Suite.
  I would like to see if there is any traction on Adobe possibly upping the number of personal computers we can be logged in on to 4-5 PCs. You see, I understand the logic of 2x PCs, one desktop and one laptop, but the fine print is that they aren't used simultaneously, and I think THAT is what the limitation should really be.
  It's 2015 and many of us have more than two PCs. I personally have two laptops (Windows), a desktop with Windows, and a Hackintosh with OS X. I use them all for different things but one thing is certain- I'd like to have Creative Cloud installed on all of them. Having to constantly sign out of all devices and sign back in as I switch back and forth is a REAL pain! It's only me on the license and I never Adobe software on more than 1 at a time. I could understand if we have to re-sign in every 30 days or something.
  I might even be willing to pay say $5/month more for an additional 3x PCs...
  Anyone else feel the same way? Anyone around here from Adobe to chime in?
  One thing is for sure: I cannot afford a 2nd subscription just to satisfy logging into more PCs simultaneously.
  Thanks!

  Hi Sufian,
  Kindly try the below mentioned steps.
  Close all the instances running for Adobe Creative Cloud from Task Manager(Win)/ Activity monitor(Mac)
  Restart the machine
  Retry the installation.
  If you get the same message again Use the CC Cleaner Tool to solve installation problems | CC, CS3-CS6
  Thanks,
  Atul Saini

• Restrict simultaneous login to a web dynpro application by the same user

  I have a stand alone web dynpro application and used the sap.authentication for user to login into the application. How can i restrict a user from accessing the application from two different browsers using the same userid?

  Hi,
     You can try the following approach:
  1. Create an outbound plug to some dummy view which shows the message to the user that he/she is already logged in. Let's call this plug "ToMessageView".
  2. In the "wdDoInit" method of the component controller write the following code:
  String loggedInUserID = WDClientUser.getLoggedInClientUser().getClientUserID();
  String[] apps = WDServerState.getActualApplications(loggedInUserID);
  //All entries of apps will look like <application-name>/<application-id>
  boolean isRunningParallely = false;
  for (String app : apps) {
       if(app.split("/")[0].equals(wdComponentAPI.getApplication().getName())){
            isRunningParallely = true;
            break;
  if(isRunningParallely)
  //fire the plug to message view here
  FYI, I haven't tested this but do try it out.
  Regards,
  Satyajit

• Disabling Simultaneous logins in BOE

  Hi,
             Is there a way to disable users from logging into BOE from multiple systems. For example if 'User 1' is logged in from 'System A', the same user if tries to login from 'System B' should get an error message and the system shouldn't allow the user to login.
                Any help would be much appreciated.
  Regards,
  Sanjay

  If a user ID exists in XI and it is enabled then it can login from anywhere, including concurrrently. You can disabel any user account for all systems but the product has no way of differentiating where they are logging in from. I believe auditing might be able to provide info on the IP.
  If you want this functionality you would need to post or vote for it (if it exists) on [IDEA place |https://cw.sdn.sap.com/cw/community/ideas]
  Regards,
  Tim

• Multiple Users Simultaneous Login

  Does anyone have a way of simultaneously logging in multiple computers with different usernames and possibly passwords. I have found Unix commands for doing this with a single user account, but not multiple. All machines would be running X.4.9 with ARD 3.1
  Thanks,
  Chuck

  Sorry, but I'm not clear on what it is you're asking regarding "multiple computers with different usernames". Could you please explain further what it is you're trying to accomplish?
  If what you mean is that you want to have some computers logged in with User A and other computers logged in with User B, then you have to do this with separate UNIX commands. But if you want to be able to do this with a single operation, you could set up an Automator workflow so that it executes the separate commands from a single script. If that's not what you mean, please post back and clarify.
  Regards.

• ACS 5 Limit User Simultaneous Logins

  Is it possible in ACS 5 to limit the amount of devices a person can log into simultaneously? We would not want this to be global as there are other user ID's that need unlimited. Thanks in advance

  In the Max Sessions table, under Sessions available to group, select one of the following options:
  • Unlimited-Allows this group an unlimited number of simultaneous sessions. (This action effectively disables Max Sessions.)
  • n-Type the maximum number of simultaneous sessions to allow this group.
  In the lower portion of the Max Sessions table, under Sessions available to users of this group, select one of the following two options:
  • Unlimited-Allows each individual in this group an unlimited number of simultaneous sessions. (This action effectively disables Max Sessions.)
  • n-Type the maximum number of simultaneous sessions to allow each user in this group

• Limiting user login time with logoutd

  Hi, I wish to limit the time a user uses his session, and I found that the "logoutd" daemon can accomplish this, however, I could't manage to find the syntax rules for configuring it, it uses the next config file:
  /etc/porttime
  Any Ideas?
  =======================================================
  Edit: I found out how to use it in the man page:
  man porttime
  pretty simple
  ========================================================
  Hum, I did what the man page said adding a line for the /etc/porttime with the config I wanted, however I can still login, heres my conf:
  *:loise:Al1900-2100
  I want that the loise user can only login from 7PM to 9PM everyday, and that the rest of the users can login at anytime. What should I do?
  Last edited by LTSmash (2008-03-16 20:40:19)

  Chris,
  Thank you for your response.
  I am using Firefox version 2.0.0.20. When I add the security component into my ADF application, I just take whatever it has by default without any customization. That includes default login.html and error.html. Here is my experience,
  1) Execute my starting task flow activity inside the JDeveloper. This will invoke a new login page in my default browser Firefox.
  2) Login the application with user "abc" and do something. Keep this session open.
  3) Open another Firefox browser and enter login URL. and then Login the application with user "xyz" (or even "abc"). I got the error page.
  To me, it should be basic web application behavior. I can do things like this in other J2EE application. This one doesn't make sense at all. I am not sure if this is the behavior I would see when I deploy it to a standalone WLS.
  Any ideas?
  Thanks,
  John

• Ip pools behavior, simultaneously login same username

  I notice that, the ip-pool system does not function properly when a username is used twice @ the same moment. the 2nd user gets the same ip address assigned & i see a : nas port re-used: message in the log. ACS 3.0 windows.
  Can i get this to work ? how ? upgrade necessary ?

  Sorry, my apologies, I thought this change would be automatic but then wondered how on earth ACS would figure out different session if they have the same port number.
  Researched the bug a bit more and what they did in 3.2 was add another option under each NAS. Go under the Netowrk Config section and click on the specific NAS, scroll down and you'll see a checkbox for "Replace RADIUS Port info with Username from this AAA Client". Check this, and ACS will then use the username rather than the port info for this NAS to define different sessions.
  Having said that though, I don't think this is going to work for you because this relies on different usernames being used, which in your case it isn't. The bug seems to have been created (and fixed) for NAS's that don't include a NAS port in their requests at all, and so ACS can now use the username as the definer for each session. The caveat to this bug though is that usernames have to be unique, if the same user logs in they'll get assigned the same IP address out of the pool.
  The crux of all this is that if you're using the same username on the same NAS, and that NAS is using the same port number, how is ACS supposed to know this is for different sessions?