Solved

Deleting Computer From AD Still Lets me Login

Posted on 2016-10-24
1
43 Views
Last Modified: 2016-11-28
I noticed that after I delete a Computer from AD I can still login into the domain with a valid user name.  The network shows as Unauthenticated but I am still able to browse shares, etc.

Is there a way to prevent access to the domain when a Computer has been either deleted or disabled?

We do have NPS and I have a feeling it all starts there...

Thank you!
0
Comment
Question by:IDMA
1 Comment
 
LVL 53

Accepted Solution

by:
McKnife earned 500 total points
ID: 41857253
To authenticate from a client does not imply that this client has to be domain joined, that's all. You can use the credentials anywhere. To protect against that, you'd need to use ipsec in connection with ipsec based firewall rules. These rules would enforce, that the computer authenticates before access is allowed.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Understanding the various editions available is vital when you decide to purchase Windows Server 2012. You need to have a basic understanding of the features and limitations in each edition in order to make a well-informed decision that best suits y…
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now