I have an Active Directory Windows domain with many users and many workstations. I would like to create a share on a server that is accessible only to a particular group of users, and only when they are logged on to a particular workstation.
That is, I want user Alice to be able to access the files on the share (which is, let's say, located at \\MyServer\MyData) but only if Alice is logged on to workstation \\MyWorkstation. If Alice is logged in anywhere else, I do not want her to have access? (A use case would be a server share that we want accessible only from a particular workstation in a secure location that is regularly audited for malware.)
Is there any way to do this, even if convoluted? We can arrange to have the server running Windows 2008 R2 or Server 2012.