|
Posted by Jesper on December 26, 2006, 4:17 pm
Please log in for more thread options
To prevent them from plugging in personal hardware your best bet is to use
Guido the Enforcer: http://mywebpages.comcast.net/dice-man/conan.jpg.
Policies only go so far. :-)
To stop him from getting to anything useful, use Server and Domain Isolation
to allow access to most resources only to domain members:
http://www.microsoft.com/sdisolation.
To find out where the machine is you need to go to your network hardware to
find which port it has attached to. Not all network hardware supports doing
that.
To find out who owns it one option is to enumerate users on it, but that
won't work if it is running a firewall, which it likely is. If it is not,
then nbtstat -r <hostname> will resolve it and show you the names registered
by the system. One of them may very well be the name of the user bringing it
in.
I would also go to Windows Explorer and Network Neighborhood and expand the
offending workgroup and see the names you see there. You will find the name
of the system, and any shares it has open. Providing that you have a security
policy that says you have the right to inspect anything that connects to your
network I would imagine you would be within your full right to do any
investigation you want into that system. You may want to have a chat with
your lawyer before you go to far into drilling into that system though. If
you have not told people they are not allowed to bring in their own hardware
then you can likely not do much about it.
"David Reed" wrote:
> Hi All,
>
> This is my first post to this newsgroup, so please bear with me.
>
> I have a user/employee who is bringing in their personal laptop to work, and
> plugging it in to our Windows network.
>
> When I go in to ENTIRE NETWORK, and click on Microsoft Windows Network, I
> see our domain, OURDOMAIN, and WORKGROUP, but when that user brings his (or
> hers) computer in, I also see TAOSHOME.
>
> How can I find out where this computer is, who it is that's attaching it, or
> just plain prevent them from being able to plug in any computer that isn't
> authorized.
>
> I'd appreciate any ideas you might have.
>
> Thank-you so much,
>
> -David
>
>
>
> ----== Posted via Newsfeeds.Com - Unlimited-Unrestricted-Secure Usenet
News==----
> http://www.newsfeeds.com The #1 Newsgroup Service in the World! 120,000+
Newsgroups
> ----= East and West-Coast Server Farms - Total Privacy via Encryption =----
>
| 
XML Sitemap