How to prevent concurrent logins for a user in ADSelfService Plus
Objective
This article details how to restrict users from logging in to ADSelfService Plus from multiple devices or browsers simultaneously. Enabling this restriction strengthens security and helps prevent account misuse or credential compromise within the organization.
Prerequisite
- You need administrative access to the ADSelfService Plus web console.
Steps to prevent concurrent logins
- Log in to the ADSelfService Plus admin console.
- Navigate to Admin > Product Settings > Connection > General Settings.
- Check the box next to the setting labeled Deny Concurrent Logins.
Note: If Session Expiry Time is set to Never, this option will be disabled. To enable it, adjust the session expiry time from Never to a specific duration. This ensures sessions can be managed and terminated as required. Once enabled, users who try to start a new session while another is active will receive an error message both on the browser and mobile app.
Resetting a user's active session status
If a user closes their browser or app without logging off and cannot log in (due to the previous session not expiring yet), the admin can manually terminate their session.
- In the same General Settings tab, click Click here beneath the Deny Concurrent Logins setting.
- In the pop-up that appears, click Confirm to close all active connections for the user. The user can now log in again without needing to wait for the idle session to expire.
By following these steps, you can efficiently eliminate the security risks posed by concurrent logins and ensure accountability for all user actions within ADSelfService Plus.
How to reach support
New to ADSelfService Plus?
Related Articles
How to prevent concurrent logins for a user in ADSelfService Plus
Solution Concurrent logins can lead to the use of valid credentials by illegitimate personnel at the same time as the legitimate user to authenticate to the network. This could lead to multiple security issues within the organization like misuse of ...Multi-factor authentication techniques in ADSelfService Plus
Let's take a look into the various authentication methods supported by ADSelfService Plus for enterprise multi-factor authentication (MFA). Why should you use MFA? Authentication based solely on usernames and passwords is no longer considered secure. ...ADSelfService Plus valid user identification
The following user categories can be considered valid in ADSelfService Plus licensing. All users who have enrolled with ADSelfService Plus. All non-enrolled users who have logged in to the product, once or more, to enroll or to update their contact ...Excluding ADSelfService Plus from antivirus software
Antivirus software plays a huge role in securing an organization's IT environment. Some antivirus software might not trust third-party applications, like ADSelfService Plus, and flag them as threats, which can impede how the product works. To prevent ...How to prevent a brute force attack with ADSelfService Plus
What is a brute force attack? In a brute force attack, cybercriminals try to guess the password of a target user account, analyze the result, and try again until they succeed. This process could take anywhere from weeks to months. Though this method ...