Bill Board <John.Doe@NoSpam.com> wrote:
> I guessed some did what you mentioned, but I was thinking perhaps
> there was a utility that you give a list of "good" workgroups/domains
> and if it see others than what's in its good list it send a notice. This
> way I could be a little quicker in finding the person/device.
No, not that I know of. You could disable NetBIOS over TCP/IP entirely if
you don't want to see stuff like this. But I'd issue a memo reminding people
not to connect unauthorized computers" and make sure it's part of your
computer use agreement - make employees sign it, even.
>
> "Lanwench [MVP - Exchange]"
> <lanwench@heybuddy.donotsendme.unsolicitedmailatyahoo.com> wrote in
> message news:eW286$EhIHA.2540@TK2MSFTNGP05.phx.gbl...
>> Bill Board <John.Doe@NoSpam.com> wrote:
>>> Recently a new workgroup/domain appeared in our "Network
>>> Neighborhood
>>>> Microsoft Windows Network" We are running Windows 2003 Server
>>> with Windows XP Pro workstations in our network.
>>>
>>> Two questions:
>>>
>>> 1. I only found this by chance when I was looking in Network
>>> Neighborhood. Is there a way that I could be alerted if a new
>>> workgroup or domain appear?
>>> 2. How can we track this back to who or what IP address device
>>> attached to the network?
>>>
>>> Thanks,
>>> Bill
>>
>> Most likely, someone simply connected a hon-domain-member laptop or
>> PC to the network once, and it's gone now. The workgroup name will
>> eventually go away & not be visible. If you want to prevent stuff
>> like this from happpening in the future, you can either invest in a
>> fancy-shmancy Ethernet switch that won't give unauthorized computers
>> an IP address, or do the cheap & cheerful (and less effective) thing
>> - disconnect any unused Ethernet jack from your switch in the server
>> room/closet/whatnot.