Here is our scenario: Client 4.91 SP1 on all student laptops which are
XP SP2, NW 6.5 SP4 on all servers. We have no Windows servers. For
students who violate our AUP, they are placed on Internet Restriction
using an ACL in Bordermanager. They are then allowed access to academic
sites that are provided by their teachers. They have figured out that if
they let one of their friends login to our network that is not on
Internet Restriction and they login to Wndows then they can still access
inappropriate sites such as proxy bypass sites to get around our internet
filtering, etc. My question is this: Is there anyway to have the
Windows login authenticate against the user that logged in on the network
and if they are different then deny access to Windows?

Joe Merricks
Network Admin
Hargrave Military Academy