XP & Win2K guests browsing my domain folders

  • Thread starter Thread starter Karim
  • Start date Start date
K

Karim

Hi all!!

I have a NT4 domain (in june will be Win2k active
directory), file server Win2k Server, and clients Win2k &
Xp.

4 or 5 rooms for students with notebooks with antivirus
protection in use to them.
Suddenly someone can't resist to attach his own computer
to our LAN. These computers may be infected or unsure for
our LAN, and how they receive the IP addres from our DHCP
server, they are able to navigate our Domain.
Althought the folders are read only,

IS IT POSSIBLE TO AVOID THAT A PC THAT ISN'T REGISTERED TO
OUR DOMAIN CAN BROWSE IT?

Thank you very much,

Karim
 
You are limited in what you can do with NT4.0. With W2K AD domain you could
configure ipsec require security for your file server and client/respond on the
workstations being sure to exempt the domain controllers from the policy by IP
address with kerberos machine authentication. Otherwise you would have to look
into a switch that can mac filter ports for now and even use 802.1X
authentication when you move to Active Directory. I would have users sign a user
agreement with enforced consequences also. --- Steve

http://www.dlink.com/products/?pid=87 -- an economical switch with security
options.
 
Back
Top