noddles Posted May 17, 2011 Posted May 17, 2011 Hello Guys, Please I have a major problem and I need everybody's help. I have a server 2008 Enterprise Domain (DC), it issues out DHCP Addresses to my local users. for my firewall, I have ISA server 2006 (Proxy Server). now, my problem is i need to only allow domain users access to my network. All non-Domain users should not be allowed access on my LAN (Not even IP Address should be assigned to them). This should be an automatic process, where the users should not be prompted for a login credential unless they are non-domain users. Management isn't giving me a new system, I must work with what i have. Please, can anyone help me out here? I have asked around, people say it can be configured with Active Directory but i cant find the setting in Group policy. Please i need help urgently. Thanks...... Quote
ICTCity Posted May 17, 2011 Posted May 17, 2011 It should work with this: On ISA > Create a new user (New User Set Wizard) Name it domain users or what you prefer. I can remember there's a windows with the possibility to add a user, you have to look in domain for "domain users" and then click check names. Once finish, you can easly set permission to that "group" (better, user). Sorry but I don't have a ISA server right now... Hope this help. Quote -------------------------------------------------------- Tu peux aussi crire en franais. Du kannst auch auf Deutsch schreiben. Puoi scrivere anche in italiano. --------------------------------------------------------
noddles Posted May 18, 2011 Author Posted May 18, 2011 It should work with this: On ISA > Create a new user (New User Set Wizard) Name it domain users or what you prefer. I can remember there's a windows with the possibility to add a user, you have to look in domain for "domain users" and then click check names. Once finish, you can easly set permission to that "group" (better, user). Sorry but I don't have a ISA server right now... Hope this help. Hello ICTCITY, Thanks for your response, i have tried that option but a pop up box keeps coming up once a user closes his / her browser. we are looking at a situation that if you are not a domain user, you dont even get an IP address. Quote
ICTCity Posted May 18, 2011 Posted May 18, 2011 Hello ICTCITY, Thanks for your response, i have tried that option but a pop up box keeps coming up once a user closes his / her browser. we are looking at a situation that if you are not a domain user, you dont even get an IP address. Actually restricting DHCP only to some users is not so easy. You could use RESERVATION, which assign "static" IP via DHCP (the same IP to the same WS). You cannot block people from discovering DHCP server (it's a broadcast request), unless you don't find a SW which can do this (I think it's quite impossible...). What does " but a pop up box keeps coming up once a user closes his / her browser." mean? Quote -------------------------------------------------------- Tu peux aussi crire en franais. Du kannst auch auf Deutsch schreiben. Puoi scrivere anche in italiano. --------------------------------------------------------
Recommended Posts