When our users login into our production system they have to RDP to a jump host server where they get authenticated with RSA by having to use there hardware token. Once they login they can rdp to any server they need to work on. If they remove there token because they have to leave for whatever reason the windows rdp session which they authenticated against automatically locks. However recently users have removed there hardware token at the end of the day walked away and come back the following morning and found that they are still logged in after they have removed their hardware token.
Is there anyway to troubleshoot why the users are not being logged automatically after they have removed there hardware token?