Limit concurrent logins

UserLock allows you to limit or prevent concurrent logins, per user, user group, or Organizational Unit^* and per session type (workstation, terminal, interactive, Internet Information Services^* or VPN/RAS).
Limitations can be set in a granular way and can vary from one user to another, one group to another, or one Organizational Unit^* to the other.

^* New feature available on UserLock 6.0

UserLock concurrent logins limitation interface

Workstation restriction

UserLock can prevent logins on multiple workstations based on users, user groups or Organizational Units^*.
Examples of restrictions can include: own worksta- tion, IP range, department, floor or building.

^* New feature available on UserLock 6.0

UserLock workstation restriction interface

Time restriction

UserLock allows defining working hours and/or maximum session time for protected users. Outside of these timeframes and/or when time is up, users will be disconnected with prior warning.
UserLock can detect when a password protected screensaver starts and can automatically logoff a session after a specific length of time.

UserLock login time restriction interface

Time quotas^*

UserLock allows defining and enforcing daily, weekly, monthly, etc. connection time quotas per user or user group and per session type.
Several time quotas can be defined for a same Protected Account. A different time quota can therefore set for each type of session.

^* New feature available on UserLock 6.0

UserLock time quotas configuration

Real-time monitoring and alerts

UserLock allows real time session monitoring; at all times the administrator knows the number of concurrent logins, who is connected, from which workstation and since when.
You can also send popup or email alerts to the network administrators for specific events such as denied logins, successful logins and logoffs.

UserLock real-time monitoring interface

Reporting

UserLock records all session logging and locking events in an ODBC database for reporting. Reports can automatically be generated at regular intervals and the following predefined reports are included:

• Session history: detailed connection list (logon, lock, unlock, logoff instances, users, domains, workstations…),
• Session Statistics: displays total login, total connection time and average time per session for a given user and period,
• Agent Distribution: view of the agent installation status on all computers of the protected network zone,
• User sessions: snapshot view of all concurrent logins at display time,
• Session count evolution^*: view of the evolution of the total opened sessions,
• RAS sessions^*: view of the history, statistics and a chart displaying the evolution of RAS sessions number,
• Dashboard: printable version of Dashboard.

^* New reports available on UserLock 6.0

UserLock reporting interface

Remote session administration

An administrator can remotely lock or logoff any session (even sessions with local accounts^*), either from the administration console or the Web interface.

^* New feature available on UserLock 6.0

UserLock Web interface

User security awareness

UserLock can provide users with information such as:

• last workstation logged on,
• date and time of last successful logon,
• history of all logons denied by UserLock and Windows since last successful logon,
• number of logons denied by UserLock and Windows since last successful logon.

This is one of the most effective ways to raise security awareness directly with the end-users.

Example of a UserLock welcome prompt

Personalized disclaimer

UserLock allows notifying all users prior to gaining access to a system with a tailor- made disclaimer.
Users can be advised that system usage is monitored, recorded, subject to audit, and that unauthorized use is prohibited and subject to criminal and civil penalties.

Example of a personalized UserLock disclaimer