Active Directory Logon Restrictions for Interactive, Wi-Fi, VPN and IIS Sessions

Whether access originates on a PC, laptop, tablet or smartphone, from within or outside the office, UserLock can protect and manage Active Directory user logins across all different session types:

Interactive sessions

Workstation and Terminal

Wi-Fi & VPN sessions

RAS sessions using RRAS or RADIUS

Internet Information Services (IIS) sessions

Intranet, Outlook Web Access…

Secure Login for a Remote and Mobile Workforce

With remote and mobile access quickly becoming the rule rather than the exception, UserLock alleviates this increased risk to enterprise security and protects against inappropriate or suspicious access.

Use Case Example 1

Secure VPN Logon Access to an Authorized Machine

To ensure users can work securely outside of the office, IT administrators can restrict VPN access to an authorized company laptop. Any other access attempt from any other machine is then denied.

Use Case Example 2

Set up and restrict User Logon Access to Wi-Fi Sessions

UserLock’s Wi-Fi session control capability enables organizations to mitigate the increasing network threats that accompany today’s growing BYOD trend. Be sure that whoever is gaining network access, via whatever device, is the owner of those credentials.
Read more

Use Case Example 3

Secure remote Logon to Company Email outside of the office

Many organizations offer employees remote access to their Exchange mailbox through Microsoft web server IIS (Internet information Services). Services include Outlook Web Access (OWA) for web browsers or ActiveSync for mobile access. UserLock can protect these IIS sessions using either ISAPI filters or HTTP modules.

Customization per Session Type

UserLock takes into consideration access from all session types offering an administrator detailed options for monitoring and restricting access to their network.

Granular login restrictions (origin, number of simultaneous connections and time constraints) that are set and enforced in UserLock can be defined by session type.

Record and report on all logon activity by session type(s).

Real-time monitoring displays each session type to make it easy to track who is connected, from where and since when.

Alerts can be defined on events by session type(s) to immediately respond to any suspicious behavior and reduce the risk of security breaches.

More Context Aware Restrictions

Restrictions by session type work alongside the other UserLock contextual access restrictions (number of simultaneous connections, origin and time constraints) to best protect and secure Active Directory user access.

Simultaneous Connections

Simultaneous Connections

Limit the number of unique entry points and concurrent sessions to prevent simultaneous logins from a single identity.

Read more

Origin

Origin

Limit access by location with controls at workstation, device, IP range, organizational unit (OU), department, floor and building levels.

Read more

Time

Limit access to specific timeframes and set daily, weekly or monthly time quotas, maximum session times and idle session time.

Read more

Download UserLock

VersionSupported systems
Windows XP | Windows Server 2003 | Windows Vista | Windows Server 2008 | Windows 7 | Windows Server 2008 R2 | Windows 8 | Windows server 2012 | Windows 8.1 | Windows Server 2012 R2 | Windows 10 (64 bits computers included) | Windows Server 2016

Demo restriction : 30-day full version with no user limits

Scroll to top