We recently went through an audit, and one of the observations was that our portal implementation will allow one userid to be logged in from multiple locations at the same time. The recommendation would be that if userid A logs in from computer 1 and then someone else logs into computer 2 using userid A, that the next link that is clicked on in computer 1 would require reauthentication. the Is there any default functionality that would allow only one session per userid at a time, or would that be something that would have to be custom developed?
Thanks in advance for your input...
