I have a Windows 2003 domain with two servers (both are also domain controllers) and about thirty Windows XP Pro client machines.
What I want to do is only allow SMB access to the servers if the computer connecting is part of the domain. As an example:
If I bring my laptop in from home (not part of the domain) and choose "Start" and "Run" and type: \\myfullyqualified.server.dns, I will get a login prompt. If I log with valid network credentials, I get into the server. I want to prohibit this so that people MUST log in from computers which are in the domain.
I doubt this is very hard but I can't figure out the key words to search on.