88CHAPTER 4: USING 3COM NETWORK ACCESS MANAGER WITHIN A NETWORK
When a PC needs to be isolated for the first time:
1Enter the MAC address for the computer that needs to be removed from the network. For information on entering MAC addresses, see “Entering MAC Addresses For A Computer”in Chapter 3.
2Associate the Isolation rule with the computer, see “Associating Rules With A Computer” in Chapter 3.
Network Operator The network operator cannot enter the MAC address for a computer. Tasks However, once the computer’s MAC address has been entered, the
operator can apply the Isolation rule to the computer if they have been given write permission for the rule. The operator can also reconnect the computer to the main network once the network administrator has removed any viruses or worms.
On being informed that a specific PC needs to be isolated again, use the
Active Directory Users and Computers interface to perform the following:
1Click on Computers in the Tree pane,
2Highlight the specific PC, and
3Select the Network Access tab from the Properties dialog window.
A list of rules that the operator has permission to apply will be displayed.
4Tick the Isolation rule to apply it to the PC.
5Click OK and exit the Active Directory Users and Computers interface.
On being informed that a specific PC can be returned to the normal network, use the Active Directory Users and Computers interface to perform the following:
1Click on Computers in the Tree pane,
2Highlight the specific PC, and
3Select the Network Access tab from the Properties dialog window.
A list of rules that the operator has permission to apply will be displayed.
4Untick the Isolation rule applied to the PC.
5Click OK and exit the Active Directory Users and Computers interface.
