Ulf B. Simon-Weidner wrote:
I've seen this "solution" quite often, and compared to limitlogon I still think
it's a good way of doing it. I wouldn't want to deploy a infrastructure just to make sure
my users don't connect from different workstations.
Would be much nicer if there would be a policy which allows logon only if
homedir is available, however doing it in the logon-script works pretty well.
As always it depends on the requirements - but I've seen only a few
implementations of limitlogin in real environments. I think this is
because most peoples don't want to extend the schema for it and are not
familiar with application partitions and other elements of Limitlogin.
One of the reasons is for sure lack of implementation guidance from
Microsoft.
--
Tomasz Onyszko
http://www.w2k.pl/blog/ - (PL)
http://blogs.dirteam.com/blogs/tomek/ - (EN)
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
