• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 61
  • Last Modified:

Deleting Computer From AD Still Lets me Login

I noticed that after I delete a Computer from AD I can still login into the domain with a valid user name.  The network shows as Unauthenticated but I am still able to browse shares, etc.

Is there a way to prevent access to the domain when a Computer has been either deleted or disabled?

We do have NPS and I have a feeling it all starts there...

Thank you!
0
IDMA
Asked:
IDMA
1 Solution
 
McKnifeCommented:
To authenticate from a client does not imply that this client has to be domain joined, that's all. You can use the credentials anywhere. To protect against that, you'd need to use ipsec in connection with ipsec based firewall rules. These rules would enforce, that the computer authenticates before access is allowed.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now