Ability in the Active Directory connector to forcefully throw the user out of any logged in session

Swapnil1 · ‎03-23-2023

One of the customers has a use case where he wants to enforce the reset password and also wants to throw the user out of any active logged-in sessions. Can someone help?

skolape_FTNT · ‎03-23-2023

If this is a customer request, please open an NFR. We need to modify existing Active Directory connector to achieve this use case..

malayamanas_FTNT · ‎03-23-2023

Hello Swapnil, "... also wants to throw the user out of any active logged-in sessions."

Does it mean logging off active Remote Desktop session for the user in a specific windows machine?

MALAYA MANAS PANDA
Professional Services Consultant

Swapnil1 · ‎03-23-2023

Yes, this means logging off from all the active sessions the user has in the environments. In this case, he might be logged into multiple such systems.

malayamanas_FTNT · ‎03-24-2023

Hello Swapnil,

Please share any configuration settings example in MS Windows AD server that provides the ability to expire all sessions for an AD user.

The example command or step should be WinRM PowerShell Remoting or PowerShell over MS windows OpenSSH server , or a LDAP query into AD to change the configuration setting of the target user.

MALAYA MANAS PANDA
Professional Services Consultant

Ability in the Active Directory connector to forcefully throw the user out of any logged in session

Nominate a Forum Post for Knowledge Article Creation