Deny Multiple user logon

Mike 1

Hi ,
I have a situation where user logon while application is running on another user profile which results in termination of the running application in the background.
How do you Deny and not allow another user to logon while another user profile account is running an application on same workstation? Or prompt message appears that another user already login

Thanks

MotoX80 32,911 Reputation points

2022-01-17T23:32:18.16+00:00

Is it the logon event that causes the program to terminate or does the second user attempt to launch a second copy of the application, and that's what causes the first instance to terminate?

Is this an application that you purchased or one that someone in your organization developed? Have you contacted the developer and asked them to fix the problem or at least explain why it is acting in that manner?
Mike 1 Reputation point

2022-01-18T00:44:29.773+00:00

Thanks for your prompt answer.second user attempts to logon to window and then to same application an causes the app to terminate.
The application is buy of the shelf for use..
Is there a way for the second user when login before logon to application to get windows prompt e.g “another user already logon”
MotoX80 32,911 Reputation points

2022-01-18T03:05:25.973+00:00

I found entries like this one, but it would require changes to the program itself.

https://stackoverflow.com/questions/171213/how-to-block-running-two-instances-of-the-same-program

I also saw other posts that suggested writing your own "launcher program". That is, the link that the user clicks on to launch the application would be a program that you would write. It would check to see if the application is already running and display a message if it is. If it isn't, it would launch the real application program.

Have you asked the software developer if they have some configuration setting that would restrict their program to one instance?

Maybe some other forum user knows of a better way to accomplish this.
Mike 1 Reputation point

2022-01-18T23:49:34.817+00:00

Thanks for the information. I’m not a programmer. I’m haven’t reach out to the Vendor yet. ’ m wondering is there a way to get this to work using GPO or windows configuration.
MotoX80 32,911 Reputation points

2022-01-19T01:26:52.427+00:00

Microsoft has tool called Applocker, which would seem to be the most likely place for that functionality to exist, but I have never had a need to use it. There is also Software Restricition Policies, and I both referenced in gpedit.msc. You could try playing around with these.

https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/applocker/what-is-applocker

https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/applocker/applocker-overview
EckiS 831 Reputation points

2022-01-19T11:30:51.787+00:00

you could try the group policy "Hide Entry Points for Fast User Switching", that should prevent a local user to login while an other user is still logged in.

or is the new user connecting via RemoteDesktop? Then this GPO may not help.

1 answer

Limitless Technology 39,511 Reputation points

2022-01-19T20:49:00.4+00:00

Hi @Mike

You can configure the "Deny logon locally" user right on the local computers.

-Go to "Start" -> "Run".
-Write "Gpedit.msc"
-Enable "Deny logon locally" user right to the source domain user accounts.
Deny logon locally
-Run Gpupdate /force on the local computer.

Here are some links to dig more info regarding this.

How to restrict the use of a computer to one domain user only
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/restrict-use-one-domain-user-only

Hope this resolves your Query!!

--If the reply is helpful, please Upvote and Accept it as an answer--
Please sign in to rate this answer.

0 comments No comments
Sign in to comment

Share via

Deny Multiple user logon

1 answer