Re: Is it possible access limitation on Computer Accounts?
- From: "Herb Martin" <news@xxxxxxxxxxxxxx>
- Date: Tue, 15 Aug 2006 10:46:57 -0500
<mswin2003jp@xxxxxxxxxxx> wrote in message
news:1155632342.463055.305720@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
The system have share resources.
Is it possible that only some computer can access these resources?
Sure, but usually people want to limit USER access rather
than "computer" access to resources.
For user access, the standard answer it so to use permission.
[For computer answer permissions are also possible but this
only affects those things access by the "computer account"
such as GPOs and computer assigned installation files.]
Generally computer access is restricted by IP address which
is NOT perfect but is better than nothing. (IP addresses can
at least in theory be spoofed.)
For true computer restrictions, you can require IPSec for access to
the resource computer (or on certain ports for certain services on
the resources computer.)
Any domain user who logon from the resource acceptable computer can
access share resources?
Use permissions to restrict it to domain users and IPSec
to filter on the "approved computer".
I imagine the resources are NAS, or share folders.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
.
- Follow-Ups:
- Re: Is it possible access limitation on Computer Accounts?
- From: mswin2003jp
- Re: Is it possible access limitation on Computer Accounts?
- References:
- Is it possible access limitation on Computer Accounts?
- From: mswin2003jp
- Is it possible access limitation on Computer Accounts?
- Prev by Date: Re: Cleaning up AD
- Next by Date: Re: Best software distribution software.
- Previous by thread: Is it possible access limitation on Computer Accounts?
- Next by thread: Re: Is it possible access limitation on Computer Accounts?
- Index(es):
Relevant Pages
|
