Case Study 3 - Blocking A Specific PC From The Network | 79 |
When a PC needs to be blacklisted:
1Enter the MAC address for the computer that needs to be blacklisted. For information on entering MAC addresses, see “Entering MAC Addresses For A Computer”in Chapter 3.
2Associate the Blacklist rule with the computer, see “Associating Rules With A Computer” in Chapter 3.
Network Operator The network operator cannot enter the MAC address for a computer. Tasks However, the operator can apply the Blacklist rule to a specific computer
once the computer’s MAC address has been entered. The operator can also remove the computer from the blacklist if circumstances require it.
On being informed that a specific PC needs to be denied access to the network, use the Active Directory Users and Computers interface to perform the following:
1Either:
click on Computers in the Tree pane, or
if Organizational Units have been created, click on the organizational units subfolders until you reach the desired unit holding the computer.
2Highlight the specific device in the Details pane, and
3Select the Network Access tab from the Properties dialog window.
A list of rules that the operator has permission to apply will be displayed.
4Tick the Blacklist rule to apply it to the PC.
5Click OK and exit the Active Directory Users and Computers interface
On being informed that a specific PC can be removed from the Blacklist, use the Active Directory Users and Computers interface to perform the following:
1Either:
click on Computers in the Tree pane, or
if Organizational Units have been created, click on the organizational units subfolders until you reach the desired unit holding the computer.
2Highlight the specific device, and
3Select the Network Access tab from the Properties dialog window.