Preventing the logged in user from accessing the site

Hi,
wanted to know if it is possible that a user who has already logged in can be prevented from logging in if the user opens a new browser window (IE or Netscape)...on the same machine as well as from different machine.
If there r any programs or guidelines available on this...please let me know.
thanks in advance
rinkub

If the user tries to log in the second time on the same machine (with the same type browser) they will have the same "session" as the first time they logged in.
So, you could check something in the session and not allow the second logon.
In the other case, you will need to keep the users logon information some place (like a database) and check to see if they are already logged on.

Similar Messages

  • Using TMG to prevent non windows domain users from accessing internet

    Hello!
    I'm using Windows server 2008 and use it to run my company's Domain and I have a copy of TMG Server 2010
    My question is if I installed the TMG on the my Domain server can I use it to prevent internet access for Non-Domain computers, and how it is done, I've looked around the internet but I couldn't find a way to do it so I thought I should ask here...
    Basically can TMG stop non-domain computers from accessing the internet ?
    thank you!

    Hi,
    configure all clients to Webproxy clients and create Firewall policy rules which allows HTTP and HTTPS only for windows users and groups from your Active Directory
    best regards Marc Grote - www.it-training-grote.de

  • I need to prevent unauthorized users from accessing the application pages

    Hi^^,
    I have created an application in jsp and servlets. It has several pages like manager, supervisor accountant. I need to prevent unauthorised users from accessing these pages. In other words I need to implement a filter. Anyone who types a url other than that of the login page needs to be blocked. However I am not able to conceptualize the code that is going to be inside the doFilter() method. Please help
    Sincerely,
    Prashant

    Hi^^,
    I admit that there were some mistakes in the previous posting. I have corrected the mistakes and now there is going to be no compile time error. However when i put in the login id and the password it is redirecting me to the login page. I think that the front end jsp is directing the control to the controller servlet. But as "YOU" have pointed out in your previous post,
    "by default requestDispatcher.forward(...) does not pass through the filter change. If the user requests the login page from their browser however, then they will still get the error message, which may not be appropriate."
    I feel we need to somehow make the code pass through the requestDispatcher.forward(...) method of the servlet.
    I am again posting the corrected code.
    package com;
    import java.io.*;
    import javax.servlet.*;
    import javax.servlet.http.*;
    public class SecurityFilter implements Filter
      public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws   ServletException, IOException
      HttpServletRequest req = (HttpServletRequest)request;
      HttpServletResponse res = (HttpServletResponse)response;
      String X = req.getRequestURI();
      if(X.equals(http://localhost:8080/MyProject/LoginPage.jsp))
         //writing code for passing through the filter
         final class MyGenericFilter implements javax.servlet.Filter
          public FilterConfig filterConfig;
          public void doFilter( final ServletRequest request, final ServletResponse response, FilterChain chain) throws java.io.IOExeption, javax.servlet.ServletException
          chain.doFilter(request,response);
          public void init(final FilterConfig filterConfig)
          this.filterConfig = filterConfig;
          public void destroy()
    else
       HttpSession session = req.getSession();
       String username = (String)session.getAttribute("username");
       if(null==username)
         request.setAttribute("Error","Session has ended. Please login");
         RequestDispatcher rd = request.getRequestDispatcher("Login.jsp");
         rd.forward(request,response);
         chain.doFilter(request,response);
        else
         RequestDispatcher rd = request.getRequestDispatcher("X");
         rd.forward(request,response);
    public void init(final FilterConfig filterConfig)throws ServletException
          public void destroy()
      Edited by: pksingh79 on Aug 12, 2008 5:23 AM

  • How to restrict the user from accessing other screens before submittingdata

    Hi All,
      I have some screens developed in Webdynpro ABAP and all these have been linked to Portal as pages. In Portal If i click on the link in detailed navigation i can see the corresponding screen on the right side. Now in one screen i have to input some data and submit the data, Now my problem is if i enter some data and before submitting the data if i click on any other link in the detailed navigation, that corresponding screen is opening and all the data of the previous screen is lost.
    Can any one suggest me, how can i restrict the user from accessing other screens before submitting the data of that screen from portal perspective.

    Hi Prasanna,
    The pages can be restricted from the user access by using the ACL permission or you can restrict the page by making invisible in navigation area which you do not want to show to the user . Open the page properties and select navigation category in the drop down and select the Invisible in navigation area property to yes.By default this property is No.Change the property for all pcd pages which want to hide from user access.
    Hope this helps you...
    Regards,
    Rudradev Devulapalli
    Reward the points if helpful....

  • Prevent a user from accessing Cube Navigator

    Is it possible to prevent a user from accessing the cube navigator in Analyzer so the user can only view reports that are setup? thanks

    In Analyzer 6.2, there are some 'behind the scenes' parameters that can be added to suppress menu items. If you are currently using Analyzer 6.2, try adding the following parameter to your applet tag:<PARAM NAME = HideNav VALUE ="True">Note: this will hide the Navigate button for all users accessing the page.

  • Powershell script for removing some users from a particular Site Collection

    Hi,
    I am looking for a PowerShell script to delete a few users from a particular Site Collection. I am unable to delete them from/_catalogs/Users/simple.aspx page therefore need some other medium to
    delete users from the site collection.
    My ultimate aim is to have no user profile with "tp_deleted" field's value as 0 in the USERINFO table. Currently there are about 40 odd users with this field's value as 0 and this is affecting my crawling of this content database.

    Thanks for the reply Alex & eHaze,
    I have a content source of root site which crawls all the site collections under it. Out of the 9 site collections, only 8 are getting crawled and 1 doesn't get crawled at all. The error in the crawl logs is 
    The SharePoint item being crawled returned an error when requesting data from the web service. ( Error from SharePoint site: Value does not fall within the expected range. )
    I tried a lot of things, searched over the net and finally found
    this which helped me solve the same issue in my development environment. I deleted these users from userInfo table and ran a full crawl. And the issue was fixed.
    Now since I cannot delete the users from userInfo table directly from PROD environment, I used .../_catalogs/Users/simple.aspx list
    to delete users from this site collection. While some of the users I could delete, quite a few I could not. Clicking on the profile redirected me to the home page rather than the info page of the profile. 
    This
    is why I have to delete these users from the site collection.
    Alex - the link you shared, I guess it is for a web application level.
    eHaze - the script you shared throws this error:
    Get-SPSite : Cannot find an SPSite object with Id or Url: http://dev-apps/divisions/BT. At C:\PowerShell Scripts\DeleteUserFromSiteCollection1.ps1:4 char:19
    + $site = get-spsite <<<< $siteURL
    + CategoryInfo : InvalidData: (Microsoft.Share...SPCmdletGetSite:
    SPCmdletGetSite) [Get-SPSite], SPCmdletPipeBindException
    + FullyQualifiedErrorId : Microsoft.SharePoint.PowerShell.SPCmdletGetSite
    You cannot call a method on a null-valued expression.
    At C:\PowerShell Scripts\DeleteUserFromSiteCollection1.ps1:9 char:27
    + $site.SiteUsers.Remove <<<< ($LoginName)
    + CategoryInfo : InvalidOperation: (Remove:String) [], RuntimeExc
    eption
    + FullyQualifiedErrorId : InvokeMethodOnNull
    hope this info helps.

  • GPO to prevent users from accessing the root folder of their profile doesn't work

    Hi,
    Here's the scenario:
    In a Windows 2012 RDS I created two groups called RemoteApp users and remote desktop users.
    These groups are defined in the collection for the corresponding RD Session hosts.
    These groups are not included in any other group, but they are located under an OU -called  Remote Users.
    In the domain controller I have created a GPO named "Restrict access to root drive"  which is linked to the Remote Users OU.
    The GPO I selected is - "Prevent users from adding files to the root of their users files folder"
    This doesn't seem to work. I have waited more than a few hours to allow the 90 minutes update, plus used the gpupdate /force
    but when a user clicks on the RemoteApp (Excel in this example) then access to the C: drive (which is the root folder of the user's profile) is enabled, and the user can create folders and save files under C:.
    I tried to run gpresult for the specific user but the GPO I created wasn't mentioned.
    I thought this would be a straight forward mechanism, but somehow it looks like something is missing.
    I have read about loopback and expanding, but not sure if this is what needs to be done, and if yes - I'd appreciate if I can get  step by step instructions. Everything I found so far was VERY vague.
    Thanks !
    One more detail that may be relevant - the DC is a Windows Server 2012, and the session host is a Windows 2012 R2.

    > These groups are not included in any other group, but they are located
    > under an OU -called  Remote Users.
    >
    > In the domain controller I have created a GPO named "Restrict access to
    > root drive"  which is linked to the Remote Users OU.
    >
    The USER accounts need to be in the OU your GPO is linked to. Despite
    their name, GPOs do NOT apply to groups, but to users (and computers).
    Groups only provide an additional layer of filtering...
    Martin
    Mal ein
    GUTES Buch über GPOs lesen?
    NO THEY ARE NOT EVIL, if you know what you are doing:
    Good or bad GPOs?
    And if IT bothers me - coke bottle design refreshment :))

  • We are using version 3.6 on several machines. Is there a way to restrict users from accessing the about:config page?

    Prevent users from making modifications to the about:config page?

    You can do this with the [https://addons.mozilla.org/en-US/firefox/addon/3911/ Public Fox] add-on.
    It can be used to password protect access to about:config. To prevent the user from disabling/uninstalling the add-on, it also allows you to password protect the add-ons manager. You can also lock down other parts of Firefox such as the options dialog and clear history.

  • Prevent users from accessing Exchange online from non ActiveSync Device

    I will try and make this question as clear as I can-
    We recently switched from an on-prem Exchange to Exchange online. Previously, the only three ways of accessing our email was VPN, ActiveSync and webmail. However, it now appears that any user can use any device that accepts an Exchange email account and
    start getting their emails. I understand this is the idea of cloud email, but as a HIPAA organization, this presents a serious security risk. My question is this-how can I track how users access email? I know I can limit things based on IP(http://technet.microsoft.com/en-us/library/hh526961(v=ws.10).aspx),
    but then it would work if they had a VPN connection and we allow certain users to access our servers using their home PC if they use a VPN connection. But now they do not need that. 
    Is there any way to track what devices and users are accessing our hosted Exchange environment, or is this just the nature of hosted email?

    Hi Dkurz8814,
    using Office 365 / Exchange Online you are able to limit access to the Mailbox to OWA and ActiveSync only.
    1. Please logon as an Administrator to the Office365 Admin Center and choose "Users" -> "Active Users".
    2. Now click on your user and view the users properties. Choose more from the menu on the left.
    3. Now choose "Edit Exchange Settings", and choose "Mailbox functions" on the left.
    Now you find some Settings how to access to your mailbox. Disable POP3, IMAP, MAPI, .... so you can get the desired result. On that page you can also check for connected devices via ActiveSync.
    You may also use the set-casmailbox to do the same
    http://technet.microsoft.com/de-de/library/bb125264(v=exchg.150).aspx in case you need a more automatic tool.
    Please let me know if that answered your question.
    Regards,
    Martin

  • How to find logged in user from Windows Registry?

    Hi,
    am developing a windows store 8.1 app using C# and xaml.
    In my app i want to find logged in user name from Windows Registry. 
    How can i get that from C# code?
    Anybody please help me.
    Regards,
    Santhosh

    from aa store app you don't have access to the windows registry.
    Microsoft Certified Solutions Developer - Windows Store Apps Using C#

  • Time Capsule preventing me from accessing some sites

    Hello,
    I've been using a 1TB Time Capsule as a router and external HD in my home network for almost one year and never had this problem, but around 3 days ago I noticed that I couldn't access certain sites like wikipedia.org and last.fm anymore (My browser doesn't get past the "waiting for www.wikipedia.org" when I try) in any of the computers I have connected to the TC.
    When I disconnected my modem from the TC and connected it directly to one of my computers I didn't have any problems accessing any sites, so the issue is definitely with the router.
    I already tried rebooting the TC and renewing the DHCP on AirPort, but neither worked.
    My TC has firmware 7.4.1 and is connected directly to 3 PCs running Windows XP Home with Firefox and wirelessly to 2 MacBooks running 10.5 Leopard with Safari, and they all have the same issue with the same sites.
    Any help would be greatly appreciated.

    buemba,
    I have been having the same exact problem--it just started about a week ago. I had gotten the 500gb Time Capsule in December and it has been working flawlessly until now.
    I've had numerous conversations with my ISP (Comcast) who swears up and down that it is not their problem to correct. I've come to learn they might be right: I can plug my laptop directly into my cable modem and access the sites which I cannot access behind my TC. It isn't a problem limited to one computer on my network--I have three Apple computers and a Linux box that can't connect to the same sites.
    I tried everything--restarted the TC, complete with new profile settings, did a powerflush of my modem, even left it off for a day hoping it would lease a new IP that would fix this problem (it didn't).
    My wife and I both rely on our Internet to do University coursework, and unfortunately, one of the sites we can't access is our online classrooms. This is a HUGE problem. I've scoured the Internet searching for a solution to this issue but have yet to come across one that applies to the Time Capsule. I really don't want to stop using my TC's router capability but short of getting a new router, I don't have the solution for this problem and nobody else seems too, either.
    Apple: help, please?
    UPDATE: Searched these forums, found a couple of other threads with other users having the same problem:
    http://discussions.apple.com/thread.jspa?messageID=9483141
    http://discussions.apple.com/thread.jspa?messageID=9421774
    http://discussions.apple.com/thread.jspa?messageID=9254854
    This is definitely not an isolated occurrence.

  • Blocking User from accessing wrong customer code in VA01

    Hi SAP SD GURU,
    my finance user uses rebate recipent in sales order creation for rebate settlement.
    my operation user uses one-time customer code in sales order for sales.
    Both type of customer codes can be used in sales order creation under different order type.
    The problem arises when operation staff uses rebate recipent code to create sales order and then billing.
    My finance User want this to stop.
    How can I block the operation User from continuing the sales entry when they select the rebate recipent in a sales order entry?
    Is there any available setting in the customer master that allow me to do so?
    Is there any setting in the SPRO that can control this?

    Hi Colin,
    Well you need to control these through the user profile & roles
    you can do this in SU01 which a Basis person can help you out with .....
    now as said User X wants authorisation to va01  ( Rebate)
                      User Y wants Authorisation to va01 ( One time)
    since here we are not restricting any user for VA01 auth , the Basis person can define the role only till the transaction level not beyond that in standard SAP transaction and here you want to restrict user to not use different customer code
    as per my knowledge i dont think that is possible but still have a check with the Basis team
    Hope this helps
    Cheers

  • How to disable user from accessing form settings?

    Hi,
    What is the authorization to disable a user from acessing the forms settings of the main menu?

    General Authorization, User name --> General --> Document Settings --> set to no authorization.
    now the user can click n see the form setting, but cant change any prior settings.
    Regards,
    Dhana.

  • Is there a way to prevent AD users from accessing the VPN?

    I have ASA 5510's that authenticate users to the Active Directory. Is there a way to prevent users, that even though they are validated through the AD from being to establish a VPN connection?

    Haven't tested this lately, but with the ipsec client, you used to be able to go to an AD user's "dial-in" tab, and there was a check box there for "allow remote access" or something that. If this was checked, they could authenticate via IAS, if not, they couldn't. This allowed only selected users within AD to use the VPN. Not sure if this is still the case, but it's a start...

  • Is there a configuration option to prevent an unprivileged user from accessing the firefox profile manager and/or firefox safe mode?

    I'm designing a locked-down Firefox user profile for use on public computers (common room in an apartment building). I can use existing plugins and add-ons to prevent access to about:config and to lock down the various firefox preferences but this is moot if a user can still access the firefox profile manager or can start firefox in safe mode. Is there any configuration setting that could prevent this?

    Hi...
    Reinstalled 10.7.3 from the Combo Updater from apples website.
    The only way to reinstall the Mac OS X or repair the startup disk running v10.7.3 Lion, is to use Lion Recovery The combo update does not do that.
    How much free space on the startup disk? Not enough free space can account for the problems with your apps.
    Right or control click the MacintoshHD icon. Click Get Info. In the Get Info window you will see Capacity and Available. Make sure there's a minimum of 15% free disk space.
    and no web-pages will load.
    Try using OpenDNS as suggested here >  Safari 5.0.1 or later: Slow or partial webpage loading, or webpage cannot be found
    Use OpenDNS for better speed, more security, includes anti phishing filters, prevents browser redirects, and it's free.
    Open System Preferences / Preferences then select the Network tab. Click the Advanced tab then click the DNS tab.
    Click +
    Enter these addresses exactly as you see them here.
    208.67.222.222
    Click +
    208.67.220.220
    Then click OK.
    edited by:  cs

Maybe you are looking for