Re: XP & Win2K guests browsing my domain folders
From: Steven Umbach (n9rou_at_n0spam-comcast.net)
Date: 04/06/04
- Next message: Steven Umbach: "Re: Certificate Services"
- Previous message: Wes Stewart: "Shared Win98 Printing in 2003 Mixed Domain"
- In reply to: Karim: "XP & Win2K guests browsing my domain folders"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 06 Apr 2004 00:59:18 GMT
You are limited in what you can do with NT4.0. With W2K AD domain you could
configure ipsec require security for your file server and client/respond on the
workstations being sure to exempt the domain controllers from the policy by IP
address with kerberos machine authentication. Otherwise you would have to look
into a switch that can mac filter ports for now and even use 802.1X
authentication when you move to Active Directory. I would have users sign a user
agreement with enforced consequences also. --- Steve
http://www.dlink.com/products/?pid=87 -- an economical switch with security
options.
"Karim" <karim.b@mailinator.com> wrote in message
news:1856701c41b05$c50349d0$a401280a@phx.gbl...
> Hi all!!
>
> I have a NT4 domain (in june will be Win2k active
> directory), file server Win2k Server, and clients Win2k &
> Xp.
>
> 4 or 5 rooms for students with notebooks with antivirus
> protection in use to them.
> Suddenly someone can't resist to attach his own computer
> to our LAN. These computers may be infected or unsure for
> our LAN, and how they receive the IP addres from our DHCP
> server, they are able to navigate our Domain.
> Althought the folders are read only,
>
> IS IT POSSIBLE TO AVOID THAT A PC THAT ISN'T REGISTERED TO
> OUR DOMAIN CAN BROWSE IT?
>
> Thank you very much,
>
> Karim
- Next message: Steven Umbach: "Re: Certificate Services"
- Previous message: Wes Stewart: "Shared Win98 Printing in 2003 Mixed Domain"
- In reply to: Karim: "XP & Win2K guests browsing my domain folders"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
