Re: 2K and Laptops

From: neo [mvp outlook] (neo@mvps.org)
Date: 09/27/02 

From: "neo [mvp outlook]" <neo@mvps.org>
Date: Thu, 26 Sep 2002 20:25:12 -0700

I feel for you since I do the same job for the State of California. To
answer your question, the laptops are joined to the domain and we allow the
laptops to cache logon information for the last two users. (Laptops for us
are in their own container and different gpos are applied to them.)

At this time, the only suggestion that I have on the table is that we
investigate the use of smart cards and readers or locate a hardware solution
that locks the drive from additional use if authentication attempts fail.

"Chad" <chade222@hotmail.com> wrote in message
news:927e01c265d0$0c719b10$36ef2ecf@tkmsftngxa12...
> I work for a large company in fort worth, Texas and am
> in charge of setting up our corporate laptops. I am
> wanting to get any info regarding how you setup your
> laptops to handle the way users log into your network vs.
> logging into the laptop while in a remote situation. As
> of right now I have the laptops setup to allow the user
> to log into the network as they would any network. Now
> when that same user takes their laptop home or on the
> road, obviously there is no network to allow the user to
> authenticate to, so we setup local user accounts. This is
> generating a few gripes from my users about having 2
> passwords and such, one for the local account and one for
> their network account, but this seems to be a safer
> practice than using the cached logons that are default in
> win2K. If I were to setup or allow the credentials to be
> cached, would this not allow a hacker (a very determined
> and excellent hacker) access to the cached network
> password? Please help, I am being attacked from my
> superiors to change my image for corp. laptops to satisfy
> the complaints of our end users, which in reality it
> should be this is the way it is deal with it. Thanks for
> any info you can give me. At this point I am about to
> have to change about 8 images to allow cached information
> to be stored on the laptops. 8 because we have such a
> wide variety of laptop models in our environment.
>
> Chad E. Hutto, A+, MCP.

Relevant Pages

  • Re: Home Wireless Networking and File Sharing
    ... passwords on all machines. ... You do not need to be logged into the same account ... and Vista:" I have done that on all of the laptops and main PC and called ... network resourse. ...
    (microsoft.public.windowsxp.network_web)
  • Re: Is VMS losing the Financial Sector, also?
    ... the web from the server. ... I suggested using only localhost or a private network but, ... In the Army we call that Risk Management and it can be applied to ... I was talking about business laptops that are locked down. ...
    (comp.os.vms)
  • RE: Home laptops on a corporate network
    ... Home laptops on a corporate network ... One of the advantages of using SMS for patch management is you can force ...
    (Security-Basics)
  • RE: Is VMS losing the Financial Sector, also?
    ... the web from the server. ... being used means that all IE and IIS related security patches need to be ... Don't allow them on your network. ... I was talking about business laptops that are locked down. ...
    (comp.os.vms)
  • Re: Unable to browse workgroup network
    ... it would be helpful to know exactly how the laptops ... Are the laptops using a wireless connection? ... did you run the Wireless Network Setup Wizard in Control ... > On the Dell PC, the one that can see both laptop, I can ping ...
    (microsoft.public.windowsxp.network_web)