M
Martin Schneider
Hello! I got a Win2K3-Server with 2 network-adapters
(192.168.0.1/255.255.255.0 and 192.168.1.1/255.255.255.0).
I want that every try to login to the server over 192.168.1.1. is
forbidden, except for a special Group of users.
So I made a 2 RAS-policies:
NAS-Typ is Ethernet AND NAS-IP-Address is equal to "192.168.1.*" AND
Windows-Group is [MyGroup]
=> Allow RAS-Access
NAS-Typ is Ethernet AND NAS-IP-Address is equal to "192.168.1.*".
=> Deny RAS-Access
But I still can logon with a user from any other group! What could be wrong?
Martin
(192.168.0.1/255.255.255.0 and 192.168.1.1/255.255.255.0).
I want that every try to login to the server over 192.168.1.1. is
forbidden, except for a special Group of users.
So I made a 2 RAS-policies:
NAS-Typ is Ethernet AND NAS-IP-Address is equal to "192.168.1.*" AND
Windows-Group is [MyGroup]
=> Allow RAS-Access
NAS-Typ is Ethernet AND NAS-IP-Address is equal to "192.168.1.*".
=> Deny RAS-Access
But I still can logon with a user from any other group! What could be wrong?
Martin