windows PC configuration: force logout/ kill existing sessions on restart

shelbypereira

12/20/23, 10:04 AM

As part of our PC Build ,configuration and deployment process, we use Window Deployment toolkit and WCD (windows configuration designer) to setup 4 users with different access. Some users are in kiosk mode.

We see that when a user is logged in and we perform a hard shutdown (pull power cable), then when we start the computer again, the user session is still active, and we are unable to logout the user , unless we have the password.

Is there a way to force on windows start that any existing sessions are closed and that we have the default login screen, where any user can login? For security considerations we prefer to kill existing sessions fo rthe hard shutdown case.

Ideally we would like to configure this with powershell or the WCD tool.

358

1 + 5

windows

powershell

Greg Askew

12/20/23, 10:17 AM

`the user session is still active`. There needs to be more information. How is this being confirmed?

shelbypereira

12/20/23, 10:45 AM

when we restart, we have a screen with only the current user being displayed and being prompted for passwords. We cannot select other users, without first logging this user out. This is an issue because if for whatever reason the user is no longer there, we are blocked.

Greg Askew

12/20/23, 11:00 AM

I have never heard of this. Not being able to logon without logging off another user. It should always be possible to logon, even if it means logging off the existing session. Although that is rarely required, due to most organizations that have workstations accessed by multiple accounts leave Fast User Switching enabled.

Pimp Juice IT

12/21/23, 5:04 AM

Do you have local group policy settings set on the machine? Delete the `"C:\Windows\System32\GroupPolicyUsers"` and `"C:\Windows\System32\GroupPolicy"` folders, then reboot and see if problem exists. I actually can think of a configuration where this is possible Windows 10 and Windows 11. If you are setting policies though, you should test to narrow down what's needed for the configuration to work as expected. Process of elimination, trial and error, and multiple reboot may be required sometimes. I assume you are not getting domain group policies doing this but those could do it too.

shelbypereira

1/12/24, 7:04 AM

after some testing, er found solution using hint from @Pimp Juice IT, I posted as answer

Score:1

Server

shelbypereira

1/12/24, 7:03 AM

hint from @Pimp Juice IT was very helpful

The setting is indeed in Group policies under Windows Components=>Windows Logon Options=>

Sign-in last interactive user automatically after a system-initiated restart. Setting the state of that policy to Disabled solves the problem.

+ 2

Pimp Juice IT

1/12/24, 5:21 PM

I believe that option does not work via domain joined machines and domain credentials that are logged on so these must be local group policy options and local accounts then, correct? Good job!!

shelbypereira

1/13/24, 7:27 AM

yes indeed I am working in a local accounts scenario, did not test on domain joined machines.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: windows PC configuration: force logout/ kill existing sessions on restart

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.