Sessions

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I have a workstation (windows 2000 pro) in a department that all it does
all day long is share a printer. The last couple of days people have not
been able to print to it because of the 10 user session limits. I went into
the management console and looked at the sessions and it seems there are
computers all over the office not just that department logging into this
server. In the security evint log there are event ids 538 and 540 for all
the sessions, but i don't know why these other computers are connection to
this one. Any suggestions?
 
It is hard to say why that is happening. Maybe people are seeing it in My
Computer Places and are trying to access it or someone configured logon
scripts for other users to use it possibly by mistake or a printer is broken
somewhere else and somebody told everyone to use that one. You can manage
the permissions for the printer so that only the users/groups you want can
access the printer and the user right for access this computer from the
network that may help resolve your problem by including only authorized
users/groups. User rights are configured in Local Security Policy/local
policies/user rights or via the Group Policy managing that user right if the
effective and local setting are not the same. A more drastic solution would
be an ipsec policy configured on that computer with a rule that includes
only the IP addresses of the computers that should be able to access for
ports 139 and 445 TCP it but ipsec policy can be a pain because you can not
specify IP ranges but only subnet or individual IP. --- Steve
 
Chip pellegrino said:
I have a workstation (windows 2000 pro) in a department that all it
does
all day long is share a printer. The last couple of days people have not
been able to print to it because of the 10 user session limits. I went
into
the management console and looked at the sessions and it seems there are
computers all over the office not just that department logging into this
server. In the security evint log there are event ids 538 and 540 for all
the sessions, but i don't know why these other computers are connection to
this one. Any suggestions?
Click to expand...

Sometimes the obvious is the accurate.
Why connecting? Perhaps because they can.
Suggestions? Make it so they cannot, so only those entitled
to the shared resource can (i.e. use user rights).
 
Back
Top