08-19-2015 11:35 PM
We have several GPO running on our clients to make the network secure as possible. Also the clients and severs are running in different VLAN. But which other configuration changes to I need todo to make the network secure?
Maybe use NPS but what are the condition I need to make?
Thanks in advance
08-20-2015 12:44 AM
Hi,
NPS is a good idea.
You have two options:
1) secure access to the network with the client MAC address. You have to enable mac-authentication against your NPS on your switch and manage all machine with the MAC address as user in you active directory.
2) Use 802.1x. enroll on each machine a computer certificate via GPO and configure your switch and clients to authenticate against NPS with 802.1x
There are a lot of manuals online how to configure it.
08-20-2015 12:44 AM
Hi,
NPS is a good idea.
You have two options:
1) secure access to the network with the client MAC address. You have to enable mac-authentication against your NPS on your switch and manage all machine with the MAC address as user in you active directory.
2) Use 802.1x. enroll on each machine a computer certificate via GPO and configure your switch and clients to authenticate against NPS with 802.1x
There are a lot of manuals online how to configure it.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
