This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD Authentication With WS-1000

Hello,

We are trying to set up AD Authentication with our WS-1000 in our school district. We have systems that are members of AD and systems of presenters, personal systems of teachers, etc that are not members of AD. Both need to access the Internet.

Sophos is recommending that we have 2 scopes in DHCP to do this: one that is for the systems in AD and another for the systems that are not. Logically, this makes perfect sense; however, I am stuck with Windows 2000 for a bit longer and can see no way with the DHCP tools available to me to do this.

It seems like in order for this to work, the system would have to 'know' it was a mamber of AD when it booted and be pointed to a particular scope, since a system will normally pull an IP from DHCP upon booting and will pull from whatever scope is available.

It seems like the default behaviour of a system not in AD would be the base-filtering level, not no Internet access at all, but that is not the case.

Any advise or corrections to faulty thinking would be appreciated.

This thread was automatically locked due to age.

0 MarkJD over 13 years ago

Hello,
At this time, the only way to setup unauthenticated browsing is through a defined IP range so it needs to be done at a network level. It would make sense from a network security perspective to have non-authenticated users connect from a contained subnet. This would give you the ability to bettter control potentially rogue applications/users from causing issues. I'm not sure if it is possible, but that's all I can think of to help with this particular issue.
:12103
Cancel
Vote Up 0 Vote Down

Cancel