NIST's guidance for a Zero Trust Architecture

Active Directory Objects

Active Directory User properties – Sessions tab

The sessions tab of the user properties window allows you to configure the timeout and reconnection settings for a user.

Active Directory User properties Sessions tab

End a disconnected session – Allows you to configure the duration after which a disconnected session should be ended.Active session limit – allows you to configure the duration after which an active session should be endedIdle session limit – allows you to configure the duration after which an idle session should be ended

“When a session limit is reached or connection is broken” section allows you to specify whether to disconnect or end a session when the session limit is reached.Disconnect from session – if you choose this option the session will be disconnected once the session limit is reached.End session – if you choose this option the session will be ended once the session limit is reached.

“Allow reconnection” section allows you to configure the reconnection settings for a user’s sessionFrom any client – choosing this option allows the user to reconnect from any client to his sessionFrom originating client only – choosing this option allows the user to reconnect from any client to his session

Note: Disconnecting a session means dropping the connection with the server without logging off whereas ending a session means disconnecting and logging off.

The values related to this Tab are stored in a LDAP attribute called userParameters.

Related posts
Active Directory Objects

Active Directory User properties – General tab

Active Directory Objects

AD computer object security tab

Active Directory Objects

Active Directory Computer Objects Tabs

Active Directory Objects

Active Directory Computer Object Management

Leave a Reply

Your email address will not be published. Required fields are marked *