Solved

Small Business Server Locking down non domain joined  machines

Posted on 2012-03-14
3
355 Views
Last Modified: 2012-11-12
Hi All,

Is there a way to stop non domain attached machines from getting an IP address in the SBS 2011 domain?
For example: They bring in their own laptop (or or i-phone on open wireless)  and plug it in to the system. Currently they will be able to surf the web.
How can I lock this down please?
Only domain joined machines/ users allowed. No exceptions.
Any ideas would be appreciated.
Olaf
0
Comment
Question by:Olaf De Ceuster
3 Comments
 
LVL 5

Assisted Solution

by:piji
piji earned 167 total points
ID: 37718696
It depends on your environment, If you got manages switch you can setup vlan and setup different dhcp for example on the router or wireless access point and make separate network just only for internet use. Tell us more about your netowork
0
 
LVL 24

Assisted Solution

by:Sekar Chinnakannu
Sekar Chinnakannu earned 166 total points
ID: 37718711
You can try with reserving the IP for workstations or else u can configure DHCP scope to limit the workstations.
0
 
LVL 12

Accepted Solution

by:
DLeaver earned 167 total points
ID: 37719652
For wireless you could use

- MAC address filtering, bit cumbersome but would do the job
- As suggested above VLAN the network or create a seperate subnet for guest wireless access which is then locked down for internet access

Physical connections you could use

- Switch port security if you have a switch that supports it
- or seperate class id's in DHCP for your internal network so that the default class gives out IP's for a restricted subnet

I can't think of a way that wouldn't take a bit of setting up beforehand but I'm sure others may know.....
0

Featured Post

The problems with reply email signatures

Do you wish that you could place an email signature under a reply? Well, unfortunately, you can't. That great Exchange/Office 365 signature you've created will just appear at the bottom of an email chain. What a pain! Is there really no way to solve this? Well, there might be...

Join & Write a Comment

INTRODUCTION The purpose of this document is to demonstrate the Installation and configuration of the Data Protection Manager product. Note that this demonstration was prepared on the basis of Windows OS is 2008 R2 and DPM 2010. DATA PROTECTI…
The password reset disk is often mentioned as the best solution to deal with the lost Windows password problem. In Windows 2008, 7, Vista and XP, a password reset disk can be easily created. But besides Windows 7/Vista/XP, Windows Server 2008 and ot…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now