We have a single login that multiple computers in a lab use and it
gives
them certain limited network access, but full internet privledges
based
upon the ACL rules.

We have locked the Lab's login account to these workstations based
upon
network address address to restrict unauthorized usage and browsing by

restricted users who had gotten smart and logged in on theor own
workstations as these lab users, mostly to surf without limitations.

The login lock works perfectly well AS LONG AS THEY USE THE CLNTRUST
KEY.
However, for some workstations that do not connect to the local novell

network, they usually use the Border Manager Login to gain internet
access.
And what we've discovered is that border manager does not check
network
restrictions such as workstation policies before granting access! It
only
checks login passwords!

Is there a way of having BM check these restrictions? Or perhaps
someone
has an alternate way of locking users based upon address or something?


Thanks,



Lewis