Restrict connections to a maximum session time

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Restrict connections to a maximum session time

In this example, the network administrator is managing authorization by using groups. All user accounts have the Remote Access Permission (Dial-in or VPN) option set to Control access through Remote Access Policy.

To conserve limited remote access server connection resources, the network administrator wants to limit the maximum session time for all dial-up users (members of the DialUpUsers group) to 20 minutes.

To implement this restriction through a remote access policy, the administrator completes the following steps:

Use the New Remote Access Policy Wizard to create a custom policy with the following settings:

• Policy name: Maximum session time of 20 minutes

• Conditions: NAS-Port-Type matches Async (Modem); Windows-Groups matches DialUpUsers

• Permission: Grant remote access permission

• Profile settings, Dial-in Constraints tab: Select the Minutes client can be connected check box, and then type 20.

For more information, see Add a remote access policy.

Delete the default policies.

For more information, see Delete a remote access policy.