Client authentication and Windows logon/logoff

[devil_i]

I want to use benefits of client authentication but only during the one windows session. When user log off from workstation and another user log on it must be requested to authenticate. Is it possible with such type of authentication?

[mcnallym]

Client Authentication authenticates the machine, not the user.

You may want too look at Session Authentication which will auth the session rather than the machine.

Also if you have the budget then I believe that User Authority is the product that really does what you are looking for in that allows much easier link in with the Windows Username. I don't believe that Session Auth will actually link in with Windows.

[devil_i]

Yes, i know that such type of authentication rely on machine, but what about limits? number of sessions and timeout. Can these properties be used?

[mcnallym]

The client is not unauthenticated just because the user logs off. As such unless you logoff and the client auth then times out if another user logs in then they won't be asked to authenticate again until the timeout kicks in.

Client auth doesn't use sessions as such so I don't believe that it will do what you want.

[BarryStiefel]

Quote:

Originally Posted by mcnallym

Client Authentication authenticates the machine, not the user.

You may want too look at Session Authentication which will auth the session rather than the machine.

Also if you have the budget then I believe that User Authority is the product that really does what you are looking for in that allows much easier link in with the Windows Username. I don't believe that Session Auth will actually link in with Windows.

Actually, Client Authenticates the IP address, not the specific machine. If a bunch of you are hiding behind a single IP address, authenticating one of you authenticates all of you.