Preventing the logged in user from accessing the site
Hi,
wanted to know if it is possible that a user who has already logged in can be prevented from logging in if the user opens a new browser window (IE or Netscape)...on the same machine as well as from different machine.
If there r any programs or guidelines available on this...please let me know.
thanks in advance
rinkub
If the user tries to log in the second time on the same machine (with the same type browser) they will have the same "session" as the first time they logged in.
So, you could check something in the session and not allow the second logon.
In the other case, you will need to keep the users logon information some place (like a database) and check to see if they are already logged on.
Similar Messages
-
Using TMG to prevent non windows domain users from accessing internet
Hello!
I'm using Windows server 2008 and use it to run my company's Domain and I have a copy of TMG Server 2010
My question is if I installed the TMG on the my Domain server can I use it to prevent internet access for Non-Domain computers, and how it is done, I've looked around the internet but I couldn't find a way to do it so I thought I should ask here...
Basically can TMG stop non-domain computers from accessing the internet ?
thank you!Hi,
configure all clients to Webproxy clients and create Firewall policy rules which allows HTTP and HTTPS only for windows users and groups from your Active Directory
best regards Marc Grote - www.it-training-grote.de -
I need to prevent unauthorized users from accessing the application pages
Hi^^,
I have created an application in jsp and servlets. It has several pages like manager, supervisor accountant. I need to prevent unauthorised users from accessing these pages. In other words I need to implement a filter. Anyone who types a url other than that of the login page needs to be blocked. However I am not able to conceptualize the code that is going to be inside the doFilter() method. Please help
Sincerely,
PrashantHi^^,
I admit that there were some mistakes in the previous posting. I have corrected the mistakes and now there is going to be no compile time error. However when i put in the login id and the password it is redirecting me to the login page. I think that the front end jsp is directing the control to the controller servlet. But as "YOU" have pointed out in your previous post,
"by default requestDispatcher.forward(...) does not pass through the filter change. If the user requests the login page from their browser however, then they will still get the error message, which may not be appropriate."
I feel we need to somehow make the code pass through the requestDispatcher.forward(...) method of the servlet.
I am again posting the corrected code.
package com;
import java.io.*;
import javax.servlet.*;
import javax.servlet.http.*;
public class SecurityFilter implements Filter
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws ServletException, IOException
HttpServletRequest req = (HttpServletRequest)request;
HttpServletResponse res = (HttpServletResponse)response;
String X = req.getRequestURI();
if(X.equals(http://localhost:8080/MyProject/LoginPage.jsp))
//writing code for passing through the filter
final class MyGenericFilter implements javax.servlet.Filter
public FilterConfig filterConfig;
public void doFilter( final ServletRequest request, final ServletResponse response, FilterChain chain) throws java.io.IOExeption, javax.servlet.ServletException
chain.doFilter(request,response);
public void init(final FilterConfig filterConfig)
this.filterConfig = filterConfig;
public void destroy()
else
HttpSession session = req.getSession();
String username = (String)session.getAttribute("username");
if(null==username)
request.setAttribute("Error","Session has ended. Please login");
RequestDispatcher rd = request.getRequestDispatcher("Login.jsp");
rd.forward(request,response);
chain.doFilter(request,response);
else
RequestDispatcher rd = request.getRequestDispatcher("X");
rd.forward(request,response);
public void init(final FilterConfig filterConfig)throws ServletException
public void destroy()
Edited by: pksingh79 on Aug 12, 2008 5:23 AM -
How to restrict the user from accessing other screens before submittingdata
Hi All,
I have some screens developed in Webdynpro ABAP and all these have been linked to Portal as pages. In Portal If i click on the link in detailed navigation i can see the corresponding screen on the right side. Now in one screen i have to input some data and submit the data, Now my problem is if i enter some data and before submitting the data if i click on any other link in the detailed navigation, that corresponding screen is opening and all the data of the previous screen is lost.
Can any one suggest me, how can i restrict the user from accessing other screens before submitting the data of that screen from portal perspective.Hi Prasanna,
The pages can be restricted from the user access by using the ACL permission or you can restrict the page by making invisible in navigation area which you do not want to show to the user . Open the page properties and select navigation category in the drop down and select the Invisible in navigation area property to yes.By default this property is No.Change the property for all pcd pages which want to hide from user access.
Hope this helps you...
Regards,
Rudradev Devulapalli
Reward the points if helpful.... -
Prevent a user from accessing Cube Navigator
Is it possible to prevent a user from accessing the cube navigator in Analyzer so the user can only view reports that are setup? thanks
In Analyzer 6.2, there are some 'behind the scenes' parameters that can be added to suppress menu items. If you are currently using Analyzer 6.2, try adding the following parameter to your applet tag:<PARAM NAME = HideNav VALUE ="True">Note: this will hide the Navigate button for all users accessing the page.
-
Powershell script for removing some users from a particular Site Collection
Hi,
I am looking for a PowerShell script to delete a few users from a particular Site Collection. I am unable to delete them from/_catalogs/Users/simple.aspx page therefore need some other medium to
delete users from the site collection.
My ultimate aim is to have no user profile with "tp_deleted" field's value as 0 in the USERINFO table. Currently there are about 40 odd users with this field's value as 0 and this is affecting my crawling of this content database.Thanks for the reply Alex & eHaze,
I have a content source of root site which crawls all the site collections under it. Out of the 9 site collections, only 8 are getting crawled and 1 doesn't get crawled at all. The error in the crawl logs is
The SharePoint item being crawled returned an error when requesting data from the web service. ( Error from SharePoint site: Value does not fall within the expected range. )
I tried a lot of things, searched over the net and finally found
this which helped me solve the same issue in my development environment. I deleted these users from userInfo table and ran a full crawl. And the issue was fixed.
Now since I cannot delete the users from userInfo table directly from PROD environment, I used .../_catalogs/Users/simple.aspx list
to delete users from this site collection. While some of the users I could delete, quite a few I could not. Clicking on the profile redirected me to the home page rather than the info page of the profile.
This
is why I have to delete these users from the site collection.
Alex - the link you shared, I guess it is for a web application level.
eHaze - the script you shared throws this error:
Get-SPSite : Cannot find an SPSite object with Id or Url: http://dev-apps/divisions/BT. At C:\PowerShell Scripts\DeleteUserFromSiteCollection1.ps1:4 char:19
+ $site = get-spsite <<<< $siteURL
+ CategoryInfo : InvalidData: (Microsoft.Share...SPCmdletGetSite:
SPCmdletGetSite) [Get-SPSite], SPCmdletPipeBindException
+ FullyQualifiedErrorId : Microsoft.SharePoint.PowerShell.SPCmdletGetSite
You cannot call a method on a null-valued expression.
At C:\PowerShell Scripts\DeleteUserFromSiteCollection1.ps1:9 char:27
+ $site.SiteUsers.Remove <<<< ($LoginName)
+ CategoryInfo : InvalidOperation: (Remove:String) [], RuntimeExc
eption
+ FullyQualifiedErrorId : InvokeMethodOnNull
hope this info helps. -
GPO to prevent users from accessing the root folder of their profile doesn't work
Hi,
Here's the scenario:
In a Windows 2012 RDS I created two groups called RemoteApp users and remote desktop users.
These groups are defined in the collection for the corresponding RD Session hosts.
These groups are not included in any other group, but they are located under an OU -called Remote Users.
In the domain controller I have created a GPO named "Restrict access to root drive" which is linked to the Remote Users OU.
The GPO I selected is - "Prevent users from adding files to the root of their users files folder"
This doesn't seem to work. I have waited more than a few hours to allow the 90 minutes update, plus used the gpupdate /force
but when a user clicks on the RemoteApp (Excel in this example) then access to the C: drive (which is the root folder of the user's profile) is enabled, and the user can create folders and save files under C:.
I tried to run gpresult for the specific user but the GPO I created wasn't mentioned.
I thought this would be a straight forward mechanism, but somehow it looks like something is missing.
I have read about loopback and expanding, but not sure if this is what needs to be done, and if yes - I'd appreciate if I can get step by step instructions. Everything I found so far was VERY vague.
Thanks !
One more detail that may be relevant - the DC is a Windows Server 2012, and the session host is a Windows 2012 R2.> These groups are not included in any other group, but they are located
> under an OU -called Remote Users.
>
> In the domain controller I have created a GPO named "Restrict access to
> root drive" which is linked to the Remote Users OU.
>
The USER accounts need to be in the OU your GPO is linked to. Despite
their name, GPOs do NOT apply to groups, but to users (and computers).
Groups only provide an additional layer of filtering...
Martin
Mal ein
GUTES Buch über GPOs lesen?
NO THEY ARE NOT EVIL, if you know what you are doing:
Good or bad GPOs?
And if IT bothers me - coke bottle design refreshment :)) -
Prevent users from making modifications to the about:config page?
You can do this with the [https://addons.mozilla.org/en-US/firefox/addon/3911/ Public Fox] add-on.
It can be used to password protect access to about:config. To prevent the user from disabling/uninstalling the add-on, it also allows you to password protect the add-ons manager. You can also lock down other parts of Firefox such as the options dialog and clear history. -
Prevent users from accessing Exchange online from non ActiveSync Device
I will try and make this question as clear as I can-
We recently switched from an on-prem Exchange to Exchange online. Previously, the only three ways of accessing our email was VPN, ActiveSync and webmail. However, it now appears that any user can use any device that accepts an Exchange email account and
start getting their emails. I understand this is the idea of cloud email, but as a HIPAA organization, this presents a serious security risk. My question is this-how can I track how users access email? I know I can limit things based on IP(http://technet.microsoft.com/en-us/library/hh526961(v=ws.10).aspx),
but then it would work if they had a VPN connection and we allow certain users to access our servers using their home PC if they use a VPN connection. But now they do not need that.
Is there any way to track what devices and users are accessing our hosted Exchange environment, or is this just the nature of hosted email?Hi Dkurz8814,
using Office 365 / Exchange Online you are able to limit access to the Mailbox to OWA and ActiveSync only.
1. Please logon as an Administrator to the Office365 Admin Center and choose "Users" -> "Active Users".
2. Now click on your user and view the users properties. Choose more from the menu on the left.
3. Now choose "Edit Exchange Settings", and choose "Mailbox functions" on the left.
Now you find some Settings how to access to your mailbox. Disable POP3, IMAP, MAPI, .... so you can get the desired result. On that page you can also check for connected devices via ActiveSync.
You may also use the set-casmailbox to do the same
http://technet.microsoft.com/de-de/library/bb125264(v=exchg.150).aspx in case you need a more automatic tool.
Please let me know if that answered your question.
Regards,
Martin -
How to find logged in user from Windows Registry?
Hi,
am developing a windows store 8.1 app using C# and xaml.
In my app i want to find logged in user name from Windows Registry.
How can i get that from C# code?
Anybody please help me.
Regards,
Santhoshfrom aa store app you don't have access to the windows registry.
Microsoft Certified Solutions Developer - Windows Store Apps Using C# -
Time Capsule preventing me from accessing some sites
Hello,
I've been using a 1TB Time Capsule as a router and external HD in my home network for almost one year and never had this problem, but around 3 days ago I noticed that I couldn't access certain sites like wikipedia.org and last.fm anymore (My browser doesn't get past the "waiting for www.wikipedia.org" when I try) in any of the computers I have connected to the TC.
When I disconnected my modem from the TC and connected it directly to one of my computers I didn't have any problems accessing any sites, so the issue is definitely with the router.
I already tried rebooting the TC and renewing the DHCP on AirPort, but neither worked.
My TC has firmware 7.4.1 and is connected directly to 3 PCs running Windows XP Home with Firefox and wirelessly to 2 MacBooks running 10.5 Leopard with Safari, and they all have the same issue with the same sites.
Any help would be greatly appreciated.buemba,
I have been having the same exact problem--it just started about a week ago. I had gotten the 500gb Time Capsule in December and it has been working flawlessly until now.
I've had numerous conversations with my ISP (Comcast) who swears up and down that it is not their problem to correct. I've come to learn they might be right: I can plug my laptop directly into my cable modem and access the sites which I cannot access behind my TC. It isn't a problem limited to one computer on my network--I have three Apple computers and a Linux box that can't connect to the same sites.
I tried everything--restarted the TC, complete with new profile settings, did a powerflush of my modem, even left it off for a day hoping it would lease a new IP that would fix this problem (it didn't).
My wife and I both rely on our Internet to do University coursework, and unfortunately, one of the sites we can't access is our online classrooms. This is a HUGE problem. I've scoured the Internet searching for a solution to this issue but have yet to come across one that applies to the Time Capsule. I really don't want to stop using my TC's router capability but short of getting a new router, I don't have the solution for this problem and nobody else seems too, either.
Apple: help, please?
UPDATE: Searched these forums, found a couple of other threads with other users having the same problem:
http://discussions.apple.com/thread.jspa?messageID=9483141
http://discussions.apple.com/thread.jspa?messageID=9421774
http://discussions.apple.com/thread.jspa?messageID=9254854
This is definitely not an isolated occurrence. -
Blocking User from accessing wrong customer code in VA01
Hi SAP SD GURU,
my finance user uses rebate recipent in sales order creation for rebate settlement.
my operation user uses one-time customer code in sales order for sales.
Both type of customer codes can be used in sales order creation under different order type.
The problem arises when operation staff uses rebate recipent code to create sales order and then billing.
My finance User want this to stop.
How can I block the operation User from continuing the sales entry when they select the rebate recipent in a sales order entry?
Is there any available setting in the customer master that allow me to do so?
Is there any setting in the SPRO that can control this?Hi Colin,
Well you need to control these through the user profile & roles
you can do this in SU01 which a Basis person can help you out with .....
now as said User X wants authorisation to va01 ( Rebate)
User Y wants Authorisation to va01 ( One time)
since here we are not restricting any user for VA01 auth , the Basis person can define the role only till the transaction level not beyond that in standard SAP transaction and here you want to restrict user to not use different customer code
as per my knowledge i dont think that is possible but still have a check with the Basis team
Hope this helps
Cheers -
How to disable user from accessing form settings?
Hi,
What is the authorization to disable a user from acessing the forms settings of the main menu?General Authorization, User name --> General --> Document Settings --> set to no authorization.
now the user can click n see the form setting, but cant change any prior settings.
Regards,
Dhana. -
Is there a way to prevent AD users from accessing the VPN?
I have ASA 5510's that authenticate users to the Active Directory. Is there a way to prevent users, that even though they are validated through the AD from being to establish a VPN connection?
Haven't tested this lately, but with the ipsec client, you used to be able to go to an AD user's "dial-in" tab, and there was a check box there for "allow remote access" or something that. If this was checked, they could authenticate via IAS, if not, they couldn't. This allowed only selected users within AD to use the VPN. Not sure if this is still the case, but it's a start...
-
I'm designing a locked-down Firefox user profile for use on public computers (common room in an apartment building). I can use existing plugins and add-ons to prevent access to about:config and to lock down the various firefox preferences but this is moot if a user can still access the firefox profile manager or can start firefox in safe mode. Is there any configuration setting that could prevent this?
Hi...
Reinstalled 10.7.3 from the Combo Updater from apples website.
The only way to reinstall the Mac OS X or repair the startup disk running v10.7.3 Lion, is to use Lion Recovery The combo update does not do that.
How much free space on the startup disk? Not enough free space can account for the problems with your apps.
Right or control click the MacintoshHD icon. Click Get Info. In the Get Info window you will see Capacity and Available. Make sure there's a minimum of 15% free disk space.
and no web-pages will load.
Try using OpenDNS as suggested here > Safari 5.0.1 or later: Slow or partial webpage loading, or webpage cannot be found
Use OpenDNS for better speed, more security, includes anti phishing filters, prevents browser redirects, and it's free.
Open System Preferences / Preferences then select the Network tab. Click the Advanced tab then click the DNS tab.
Click +
Enter these addresses exactly as you see them here.
208.67.222.222
Click +
208.67.220.220
Then click OK.
edited by: cs
Maybe you are looking for
-
Third Party and Individual Purchase Order
<b>Can anybody please send me the steps to configure the Return Process for both Third Party and Indvidual Purchase Orders.</b>
-
Vendor line item transfer from one profit center to another profit center
Dear All We have posted vendor line item in wrong profit center. now we want to transfer to correct profit center what is the procedure? Vishvas
-
How do I cancel NHL gamecenter ?
I just bought the gamecenter app just to find out that all my games are blocked out now I can't cancel it !!
-
How to cut a single track into seperate songs
I am very new to Garage band and home recording in general. I recorded my band practice and want to pick the best songs into separate tracks to make a cd for everyone to practice with. I just used the computer mic and recorded a 2 hour practice as on
-
Can you run Lightroom off an external hardrive?
I need to get a new laptop and am considering buying a HP Stream 14. It has only got 32GB of storage on it offline so relies on cloud storage mainly. I will have an external hardrive too though. Will I be able to run Lightroom on this? I don't mind i