Lockout and force a user off machine (termination)
03/28/2017 1067 views
I am looking for a way to lockout a remote user and prevent them from logging in they take the machine offline. One way I have done this in the past is to request a remote screen share and I issue:
manage-bde –forcerecovery C:
I would issue this command via a remote command, but the firewall is on and I am unable to reach the machines. Which is why I was looking at using Kace.
Since the users don't know the bitlocker key, they are essentially locked off the machine. I am looking for a more stealthy way to handle this. It would be nice to have Kace take the user out of the admin group (if applicable), force a bitlocker recovery, log the user off quickly (so they can't cancel it), and shut down.
If this is not the best way to go about it, I am open to ideas.
Be the first to answer this question