remote tools - increase security
remote tools allows the end-user to disconnect the session. the problem with this is if the user that logs on what the IT Admin, the user can disconnect him/her and use their account instead of their own.
this scenario is common on a help desk, so it would be good to know who logged on (remote or local) and when the connection is lost, automatically lock/log off the session.
this is not the behaviour im experiencing. however, not using the switch user (and i know its a bad idea, but some help desk users do that).
Switch users are also disabled on many organisations, so the behavior i'm seeing is:
1- user01 log on
2- help desk connects to a user01 session
3- help desk log off user01 and log on as user02
4- user that is connected to the remove device, disconnect the help desk and will be kept loged on as user02 instead of its own user.
hope it helps.
Program Manager for Remote Control here-
As long as the IT admin switches users (without using runas! Which is a bad idea) then the screen will be locked if the session is disconnected. Then the user would need the IT admin's credentials to elevated privileges on their machine.
Is that not the behavior you are seeing?
Dune Desormeaux, SCCM PM