gnosticgnowledge
asked on
Active Directory restricting DHCP client address distribution
I have a windows 2003 server active directory network. My domain controller is also my dns and dhcp server. I would like to prevent users from just plugging in and getting an IP address. Can this be done with active directory?
ASKER
Ok wasn't specific enough. Receiving a DHCP address from my DNS/DHCP/Domain Controller. Specifically, I need to know if I can use Active Directory to prevent someone from getting an address.
To prevent a domain computer from getting an address or a non-domain computer? What are you trying to accomplish?
ASKER
To prevent a windows workstation configured as a dhcp client plugging into the network and getting an address. Come to think of it, I would like to stop someone from being able to give themselves a static address also. To prevent a non-domain computer from getting an address. Domain Users can't add a machine to the domain.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You might check with an ISP how they control the IP address issuing as for them each IP address actually costs. When we do a dial-up the server asks for username and passord and only after that is an IP address issued.
Are you tryng to prevent access to local resources or to the internet?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Hi,
Have a look at this. I should tell you everything:
http://www.windowsecurity.com/articles/DHCP-Security-Part1.html
Have a look at this. I should tell you everything:
http://www.windowsecurity.com/articles/DHCP-Security-Part1.html
Joe