I have a Windows 2003 domain with two servers (both are also domain controllers) and about thirty Windows XP Pro client machines.
What I want to do is only allow SMB access to the servers if the computer connecting is part of the domain. As an example:
If I bring my laptop in from home (not part of the domain) and choose "Start" and "Run" and type: \\myfullyqualified.server.dns, I will get a login prompt. If I log with valid network credentials, I get into the server. I want to prohibit this so that people MUST log in from computers which are in the domain.
I doubt this is very hard but I can't figure out the key words to search on.
The security measure that you're describing is called "Server & Domain Isolation", and is deployed using IPSec policies within AD. Unfortunately I can't point you to a 3-page tutorial that will take you
Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008.
Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource.
Use Google, Bing, or other preferred search engine to locate trusted NTP …