Re: To limits the Domain access

Thanks for your answer

Currently perhaps the most direct way to accomplish this is by
implementing IPsec for domain isolation.

I will investigate this way.

Someone with a valid domain
account should not be allowed access to domain resources except
when logged into a machine in the domain.
Right?


Exactly. I want to prevent the possibility for a user (that know a regular
domain account) to connect a laptop (not registered in the domain) using his
account. If this connection is possible (as today) it's easy for an internal
user to copy entire archives on a personal laptop and get them outside the
company....

http://search.microsoft.com/results.aspx?mkt=en-US&setlang=en-US&q=domain+isolation
or http://tinyurl.com/y5qa5y

Thanks, an interesting link to start from...
Bear



.

Relevant Pages

  • Re: To limits the Domain access
    ... implementing IPsec for domain isolation. ... account should not be allowed access to domain resources except ... domain account) to connect a laptop using his ... user to copy entire archives on a personal laptop and get them outside the ...
    (microsoft.public.win2000.security)
  • Re: Installing Sharepoint
    ... Sequel, DFS, and other domain resources without using any domain account ... we would be using the local system account or an account that has ... to access network resources, read, write, and update records, and such. ...
    (microsoft.public.sharepoint.portalserver)
  • Re: Anonymous Printer Share - Access Denied
    ... box when the guest account is enabled. ... >domain resources available to the users group and password ... >> security policies to no avail. ...
    (microsoft.public.win2000.security)
  • Re: To limits the Domain access
    ... wanting to allow access to domain resources only from machines ... account should not be allowed access to domain resources except ... access to the domain only for the client yet registered. ...
    (microsoft.public.win2000.security)