Solved

How do I use Group Policy to block VMWare NAT service on my domain desktops?

Posted on 2008-10-07
4
699 Views
Last Modified: 2010-04-21
My switches are capable of blocking VMware workstation using bridging, now unpatched vm's can still connect if they NAT. So i would like to disable the NAT service using a group policy.And before anyone says you need NAC, ACE etc i know i just want a quickish fix til i get budget for NAC and ACE
0
Comment
Question by:brianogorman
4 Comments
 
LVL 8

Expert Comment

by:Point-In-Cyberspace
ID: 22662028
As far as i know there is no way to do it without the tools you mention.
You may try to build an administrative template to set the values you need.

For this try to look to:
http://support.microsoft.com/?scid=kb%3Ben-us%3B323639&x=2&y=16

and google around with words: write administrative template

0
 
LVL 7

Expert Comment

by:BogdanSUA
ID: 22663510
This is not a super elegant solution, but it will work just fine....Use the following GPO:
User Configuration, Administrative Templates, System, Don't run specified Windows applications

Enable the policy and add the following executable with no path...just like you see it below.

vmnat.exe
0
 
LVL 30

Accepted Solution

by:
LauraEHunterMVP earned 500 total points
ID: 22663704
Is the VMWare NAT service an actual Windows service that shows up in the Services MMC?

If so, you can mandate the service be set to Disabled using GPO.

Create and link a GPO to the OU containing the workstation objects, and define the Startup type of the NAT service to "Disabled". Caveat - you need to create and edit the GPO from a machine that -has the relevant service installed-, otherwise it won't show up in the UI.
0
 

Author Closing Comment

by:brianogorman
ID: 31503930
excellent that worked a treat many thanks.
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this step by step tutorial with screenshots, we will show you HOW TO: Enable SSH Remote Access on a VMware vSphere Hypervisor 6.5 (ESXi 6.5). This is important if you need to enable SSH remote access for additional troubleshooting of the ESXi hos…
In this article, I will show you HOW TO: Install VMware Tools for Windows on a VMware Windows virtual machine on a VMware vSphere Hypervisor 6.5 (ESXi 6.5) Host Server, using the VMware Host Client. The virtual machine has Windows Server 2016 instal…
Teach the user how to edit .vmx files to add advanced configuration options Open vSphere Web Client: Edit Settings for a VM: Choose VM Options -> Advanced: Add Configuration Parameters:
This Micro Tutorial walks you through using a remote console to access a server and install ESXi 5.1. This example is showing remote access and installation using a Dell server. The hypervisor is the very first component of your virtual infrastructu…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question