Re: Restrict access to LAN by random laptops?

---

• From: Meinolf Weber [MVP-DS] <meiweb(nospam)@gmx.de>
• Date: Thu, 1 Jan 2009 10:51:16 +0000 (UTC)

---

Hello MyGposts,

Some equivalent is not built in in windows. If you use server 2008 you can have a look on Network Access Protection:
http://www.microsoft.com/technet/network/nap/napoverview.mspx

http://technet.microsoft.com/en-us/network/bb545879.aspx

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

We are unable to do that and it would be too tedious even if the
switches supported that and we had staff available to manage mac
addresses.

What about something built into Windows?
The problem is more that we don't want the rogue, virus-infected
personal
computers to be able to be used to access our domain resources by the
user
simply mapping a drive and typing in their domain credentials at an
authentication prompt.
Is IPSEC or 802.1x suitable and which is the easiest to implement?
"Meinolf Weber [MVP-DS]" wrote:

Hello MyGposts,

Use manageable switches and allow only the MAC addresses from the
company computers.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and
confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm

Is there any native way on a Windows Server 2003 domain to prevent
unknown
personal laptops from accessing the local LAN without needing to use
third
party hardware and software?
We do not want to turn off DHCP, and even if we did, that wouldn't
stop
someone from manually configuring a static address that works on our
LAN.

.

---

• Follow-Ups:
  • Re: Restrict access to LAN by random laptops?
    • From: Bill Grant

• Prev by Date: Re: The network path was not found
• Next by Date: SITE-To-SITE VPN using Windows Server 2003 Standard
• Previous by thread: Re: The network path was not found
• Next by thread: Re: Restrict access to LAN by random laptops?
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: W2k8: Character Map Applett Missing ... Best regards ... This posting is provided "AS IS" with no warranties, and confers no rights. ... There is no charmap.exe on my Windows Server 2008 available. ... "Meinolf Weber" schrieb im Newsbeitrag ... (microsoft.public.windows.server.setup) Re: W2k8: Character Map Applett Missing ... Best regards ... This posting is provided "AS IS" with no warranties, and confers ... There is no charmap.exe on my Windows Server 2008 available. ... "Meinolf Weber" schrieb im Newsbeitrag ... (microsoft.public.windows.server.setup) Re: Downloading Service Pack 4 ... This is the one and only SP4 for windows versions. ... Best regards ... Meinolf Weber ... (microsoft.public.win2000.general) Re: how to exclude domain administrator from default domain policy? ... Prior 2008 OS you can not with windows. ... You have to find some 3rd party tools. ... Best regards ... Meinolf Weber ... (microsoft.public.windows.server.active_directory) Re: Still strange not fully working DNS server ... Best regards ... If nothing helps I guess the only optuin is to reinstall server, ... "Meinolf Weber" wrote: ... Ive removed that just a few hours ago and the GPO and DNS problem ... (microsoft.public.windows.server.dns)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.networking  > 2009-01