+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 17
Windows Thread, Make Windows ask for password again in Technical; Hi. Not sure if this is even possible. First a bit of background: we are trying to integrate all our ...
  1. #1

    Join Date
    Jan 2008
    Location
    Kingston Upon Thames
    Posts
    102
    Thank Post
    11
    Thanked 22 Times in 20 Posts
    Rep Power
    17

    Make Windows ask for password again

    Hi.

    Not sure if this is even possible.

    First a bit of background: we are trying to integrate all our systems so that staff only have one username/password across everything. I want to use SIMS.net trusted logins so that it works with AD. The DHT doesn't like the idea of once a computer has signed on, the user can access SIMS without entering a password.

    What I want to know is, is there any way of getting Windows to ask for the user to re-authenticate before opening cirtain programs (i.e. SIMS).

    Thanks.

    David

  2. #2
    BJG
    BJG is offline
    BJG's Avatar
    Join Date
    May 2008
    Location
    Norwich
    Posts
    465
    Thank Post
    89
    Thanked 35 Times in 25 Posts
    Rep Power
    22
    I think the DHT is misguided. If we had single log-on here, they'd be delighted. Surely the whole idea is to reduce the need for staff to keep logging into different systems; or if not it sounds like it would be simpler to keep things as they are. Perhaps you could discuss their concerns about it?

    Otherwise, maybe you could look at a general-purpose utility to password protect programs like this one:

    Program Protector 3.2 - Program Protector is unique, state of art security utility that allows you to...

    Another possibility might be to password-protect the folder containing the application shortcuts.
    Last edited by BJG; 18th May 2009 at 02:59 PM.

  3. #3

    Join Date
    Jan 2008
    Location
    Kingston Upon Thames
    Posts
    102
    Thank Post
    11
    Thanked 22 Times in 20 Posts
    Rep Power
    17
    Thanks BJG but thats not quite what we're after. We do want single log on, but we want them to enter the same username and password as they use with windows to get into SIMS. I know I'm not being very clear, but its a difficult thing to explain.

  4. #4

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    This isn't possible I'm afraid - another user brought it up a while back, and it went on the Capita supportnet site, where it received mixed reviews.

    I don't see the issue that your DHT has myself. A machine should not be left unlocked anyway, so what does it matter if a user can get straight into SIMS.net?

    Would that not do? ie. enable password protected screensaver and then have it auto-lock after a few minutes?

  5. #5

    Join Date
    Jan 2008
    Location
    Kingston Upon Thames
    Posts
    102
    Thank Post
    11
    Thanked 22 Times in 20 Posts
    Rep Power
    17
    I agree with you that computers should not be left unlocked, but sometimes staff leave computers.

    The only way I thought of doing it was to use TS RemoteApp in Server 2008, because that asks you to authenticate IIRC. I was just wondering if there was any way to duplicate the effect locally.

  6. #6

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    Quote Originally Posted by dyoung5 View Post
    I agree with you that computers should not be left unlocked, but sometimes staff leave computers.
    That's what the screensaver lock is for...

  7. #7

    Join Date
    Jan 2008
    Location
    Kingston Upon Thames
    Posts
    102
    Thank Post
    11
    Thanked 22 Times in 20 Posts
    Rep Power
    17
    Well I have suggested that, but it didn't seem to float. Anyway, I'll keep trying, we've only talked about it once.

    What do you do about staff not logging off? do you get a lot of requests to unlock computers?

    Thanks,

    David

  8. #8

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    Quote Originally Posted by dyoung5 View Post
    Well I have suggested that, but it didn't seem to float. Anyway, I'll keep trying, we've only talked about it once.

    What do you do about staff not logging off? do you get a lot of requests to unlock computers?
    Every teacher has their own laptop here, so this isn't an issue.

  9. #9
    mrforgetful's Avatar
    Join Date
    May 2006
    Posts
    1,637
    Thank Post
    7
    Thanked 15 Times in 15 Posts
    Rep Power
    22
    We toyed with SIMS single Sign On but didn't like not needing a password like your DHT.

    To be honest, I'm not sure what you're trying to acheive here at all?

    Why work to get SSO working then work more to find a way to enter a password?

    Why not just leave it as it is, prompting for a password?

    Incidentally we also use the Password Screen saver after 10 minutes.

  10. #10

    Domino's Avatar
    Join Date
    Oct 2006
    Location
    Bromley
    Posts
    4,152
    Thank Post
    215
    Thanked 1,259 Times in 790 Posts
    Blog Entries
    4
    Rep Power
    507
    He's trying to get it to need a password, but have that username/password synced with the domain one so they don't need to remember two.

    However has your DHT considered they may also just leave SIMS logged in too?

    Basically this is an staff education issue rather than a technical one - does your AUP mention security protocols/standards? it should, then you can start to enforce them.

    Basically everyone needs to be onside, it'll usually only take a couple of people getting warned by SMT to make everyone sit up and notice - I'd suggest making a huge deal about the intro of SSO and hammering home the security knock-ons in a training session/inset day

  11. #11

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,262
    Thank Post
    242
    Thanked 1,568 Times in 1,250 Posts
    Rep Power
    340
    I think Smartcards are the way forward and it's a technology they've used in banks for years. You must enter your card first, then type your password as normal.

    The trick is to have the card attached to you (usually around the waist), so if you walk away, the card is ejected and the workstation is automatically locked.

  12. #12

    Join Date
    Mar 2008
    Location
    Surrey
    Posts
    2,168
    Thank Post
    98
    Thanked 319 Times in 261 Posts
    Blog Entries
    4
    Rep Power
    113
    Quote Originally Posted by Michael View Post
    The trick is to have the card attached to you (usually around the waist), so if you walk away, the card is ejected and the workstation is automatically locked.
    Implanted RFID tags. Much better option, and if you set up your wireless right you can keep track of when those problem users are heading towards you as well.

  13. #13

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    Quote Originally Posted by jamesb View Post
    Implanted RFID tags. Much better option, and if you set up your wireless right you can keep track of when those problem users are heading towards you as well.
    Pah! Brain scans, much better. And truly unique.

  14. #14

    tmcd35's Avatar
    Join Date
    Jul 2005
    Location
    Norfolk
    Posts
    5,665
    Thank Post
    850
    Thanked 893 Times in 738 Posts
    Blog Entries
    9
    Rep Power
    328
    Quote Originally Posted by localzuk View Post
    Pah! Brain scans, much better. And truly unique.
    I know a few people that'll fail on that - The brain scanner would continuously return - NUL

  15. #15


    Join Date
    Sep 2008
    Posts
    1,767
    Thank Post
    323
    Thanked 259 Times in 212 Posts
    Rep Power
    120
    Quote Originally Posted by tmcd35 View Post
    I know a few people that'll fail on that - The brain scanner would continuously return - NUL
    Lol, think we all know people like that

    But I agree with Domino, it is a staff training issue rather than a technical one. I dont like it when staff issues get forced into an IT issue because people aren't willing to use things properly and rather than being pulled up for it(ie not locking your computer when your away)

    And we have an automatic screen lock on staff logons because there were far too many times when I walked into a room where a teacher was left logged on but not in the room. It may not have been a problem except it would be lunch/break time and pupils were using the room unsupervised.

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Replies: 4
    Last Post: 6th May 2014, 07:25 PM
  2. Replies: 3
    Last Post: 23rd March 2009, 10:11 PM
  3. Replies: 14
    Last Post: 9th March 2007, 11:53 AM
  4. HELP! Recovering Windows 2003 Admin password
    By crc-ict in forum Windows
    Replies: 7
    Last Post: 8th September 2006, 06:40 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •