I am using Cisco ACS 4.0 as a radius server that authenticate users for Internet access.
Microsoft ISA 2004 is used as Radius client.
When users tries to connect to Internet, the ISA Server forwards requests to Radius server (Cisco ACS) for authentication.
I have constated that some users communicates their passwords to permit acces to Internet for non authorized users.
Even, I have selected Max Sessions property in Cisco ACS to 1 for every user, I can see clearly on ISA 2004 that the same user/password is used from multiple PCs simultaneously.
Internet acess on my company is based on a user / password authentication, and IP adresses are provided by DHCP server.
Can you help by advising me how to limit every user using the internet to only a single session at any time, by using ISA 2004 (proxy) and Cisco ACS 4.0 (Radius Server).