User logged in more than once

[Mark Thiessen]

Is there anyway to prevent a username from being logged in more than once? In our company I noticed the same user was logged in from more than one machine. A couple users are obviously sharing username/passwords. Is there a way to disallow this either by scripting, a server configuration, or a server plug-in?

Thanks

Edited December 10, 2007 by Guest

[Reed]

Create a "logged_in" field that is set to 1 upon login, and to 0 upon logout. When a second user tries to log in with logged_in set to 1, he will get a message, and then be logged out.

This requires you have a table of users linked to your accounts.

[IdealData]

The problem with recording user logins in a table is if they do not quit normally (ie crash) then the login record will still have them logged in - so then you run into another user management problem.

Re-issue new passwords, along with a stern warning!

[Genx]

Stern Warning: The account owner will be held responsible for any changes made to any data and "account sharing" will not constitute a valid defence - Any loss or damage to data resulting from a change made via the account owner's account will leave the account owner open to financial penalties. The security of your password is your responsibility, you will be held liable.

Or alternatively: "you wouldn't share a girlfriend - don't share your account" lol.

Always works for me provided that you don't know the people personally, cause then they'll probably realize your full of bull****.

[Steven H. Blackwell]

Switch to External Server Authentication where the OS level accounts can have restrictions related to simultaneous log-ons, permissible days and times, and specific machine restrictions.

Steven