Is there a reason why you would not be able to restrict the desktop to one session per user? In the properties for the desktop under Application Limits you can choose to Allow only one instance per user. that would give them an error message when they tried to open the second desktop app. Robert _____ From: Mike MacDonald [mailto:Mike.MacDonald@xxxxxxxx] Sent: Thursday, December 04, 2003 8:29 AM To: thin@xxxxxxxxxxxxx Subject: [THIN] Accessing Published Applications From a Published Desktop First, we are running W2K/MFXP FR3 and most users connect to a published desktop. We also use published applications. Basically we follow an 80/20 rule, meaning if 80% of the users run an application it gets installed on the published desktop server, if 20% or less use it we install it on a published application server. My issue is that once in the published desktop users have access to PN using ICA passthrough, from which they can access their published applications. The problem is that they can also access their published desktops. Our users are not the most savvy, so we have a lot of cases were they connect to their published desktop multiple times, one inside the other. What I would like to do is either: 1) Restrict their ability to launch the published desktop from the published desktop servers. >or< 2) Create ICA files on the published desktop servers and provide access to the published apps that way. The problem here has been trying to get the ICA file to use pass-through authentication. From what I understand you can't do the pass-through authentication within an ICA file? Is there a good way to implement either solution or is there another alternative I haven't cosidered. Thanks in advance, Mike MacDonald, MCSE, CCA