UserLock AD Logon & Session Control

Active Directory logon and session control for Windows

Managing where and how users sign in is a common operational problem in Windows estates. Unrestricted logons, shared accounts and remote access make it hard to enforce who is actually using an account. That adds risk for regulated organisations and multi-site operations that need clear audit trails.

UserLock enforces logon and session rules at the Active Directory account level. It limits concurrent logons, restricts permitted workstations and locations, and can block or terminate sessions that violate policy. The product also records authentication events and produces alerts for IT review and investigation.

Where Userlock is used

Prevent shared accounts and reduce concurrent logins across branch offices by enforcing per-account session limits and approved workstation lists. This helps where staff move between sites or use hot-desking setups.

Use UserLock to capture authentication evidence for investigations or compliance checks. It can alert teams to unusual logon patterns and provide audit-ready records without changing core AD authentication.

Fits within these solutions

Multi-Factor Authentication

Compliance Reporting

Active Directory Reporting

Conditional Access & Risk Policies

Suitable environments

Fits medium and large, Windows-centric organisations with Active Directory. Particularly useful for regulated bodies, multi-site networks and businesses with remote or hybrid workers that need tighter session control and auditability.

Benefits

Control user access to systems

Ensures users can only log on under defined conditions.

Prevent unauthorised access

Restricts access based on time, device or session rules.

Limit concurrent sessions

Prevents users from maintaining multiple sessions where not allowed.

Improve visibility of logon activity

Provides insight into who is logged on and where.

Support compliance requirements

Provides reporting and control needed for audit and regulatory standards.

Enhance security posture

Reduces risk by enforcing stricter access controls at logon level.

Enable MFA for Windows logon

Adds additional verification to strengthen authentication security.

Capabilities

Logon access control

Controls when, where and how users can log on to systems within Active Directory environments.

Session management

Manages user sessions including concurrent session limits and session restrictions.

Multi-factor authentication

Adds MFA to Windows logon, RDP, VPN and other access points.

Logon restrictions

Applies rules based on time, workstation or session type to control access.

Real-time logon monitoring

Provides live visibility into user logon activity and sessions.

Session termination

Allows administrators to terminate sessions in real time when required.

Audit and reporting

Generates reports on logon activity and access patterns for compliance and security.

Centralised policy management

Manages access control policies across the environment from a single console.

Applications

Control Windows logon access

Used to define when and where users can log on within Active Directory environments.

Restrict concurrent user sessions

Prevents users from maintaining multiple active sessions simultaneously.

Secure RDP and remote access

Applies access controls and MFA to remote sessions.

Monitor user logon activity

Provides real-time visibility into user sessions and access.

Support access and compliance controls

Provides audit trails and enforcement of access policies.

Prevent account misuse

Reduces risk of shared credentials or inappropriate access.

Userlock