Recently we started testing the newest view client (2.3) We quickly noticed that one of its default behaviors could be a potential security risk in our environment.
Once a user Authenticates to a connection broker, opens a desktop session and later closes that session you are no longer sent back to a log-in prompt and all of the users entitled pools are available.
I have been though the client settings and looked at local GPO settings and I have not found anything that will force a user to re-authenticate after log off /disconnect.
Any ideas on how I might be able to accomplish this?