I am looking for a solution that allows me to pinpoint exactly when and where a user logs in on our network. I run a Windows 2003 Domain with Windows XP Pro SP3 clients. I want a canned solution or third party too that provides reporting etc..

I have two possible solutions for you.1. Scriptlogic Desktop Autority 8.0: Scripting software with reportingThis will provide user access per computer.http://www.scriptlogic.com/products/desktopauthority/walkthrough/default.asp?keyframe=link7b2. ADmanager plus: provides active directory reporting for user accounts but i couldnt find if it listed the PC as well. I ahve used this in the past to monitor account lockouts and inactive accounts.

Thanks I will take a look. I really appreciate your response.

I use logon and logoff scripts configured in Group Policy to write logon/loggoff events to a shared file. I have examples linked on this page:http://www.rlmueller.net/Logon5.htmThere is also a program linked on the page to parse the shared file for logon sessions and output in comma delimited format, so if the output is redirected to a text file it can be read by a spreadsheet program.Richard MuellerMVP ADSI

Hello, You can also check out the LimitLogin tool that consists by the server side web service and client side logon script. It has the ability to generate user login information reports in CSV and XML formats. Limit Login Attempts With LimitLogin http://207.46.16.252/en-us/magazine/2005.05.utilityspotlight.aspx If you have any questions or concerns, please do not hesitate to let me know.

Thank you all for your responses. Richard thank you especially as you have given me the bridge to cover the gap between current and future implementation.

UserLock will do the job. It indeed allows IT security teams to: - prevent or limit simultaneous logon (same ID, same password), per user or user group - record all session logging and locking events in an ODBC database (Access, SQL Server, Oracle, MySQL,…) for future reference - monitor user sessions in realtime (who is connected, from which workstation(s), for how long…) - remotely lock, logoff and reset all interactive sessions - define working hours and/or maximum session time for protected users and disconnect users with prior warning outside of the defined timeframe(s) and/or when time is up - restrict user group’s network access per workstation or IP range - notify all users prior to gaining access to a system with a tailor-made warning message (legal disclaimer, etc.) - …Franois Amigorena President & CEO IS Decisions (Security Software) http://www.isdecisions.com