Case Study 3 - Blocking A Specific PC From The Network 79
When a PC needs to be blacklisted:
1 Enter the MAC address for the computer that needs to be blacklisted. For
information on entering MAC addresses, see “Entering MAC Addresses
For A Computer”in Chapter 3.
2 Associate the Blacklist rule with the computer, see “Associating Rules
With A Computer” in Chapter 3.
Network Operator
Tasks
The network operator cannot enter the MAC address for a computer.
However, the operator can apply the Blacklist rule to a specific computer
once the computer’s MAC address has been entered. The operator can
also remove the computer from the blacklist if circumstances require it.
On being informed that a specific PC needs to be denied access to the
network, use the Active Directory Users and Computers interface to
perform the following:
1 Either:
click on Computers in the Tree pane, or
if Organizational Units have been created, click on the organizational
units subfolders until you reach the desired unit holding the computer.
2 Highlight the specific device in the Details pane, and right-click. Select
Properties.
3 Select the Network Access tab from the Properties dialog window.
A list of rules that the operator has permission to apply will be displayed.
4 Tick the Blacklist rule to apply it to the PC.
5 Click OK and exit the Active Directory Users and Computers interface
On being informed that a specific PC can be removed from the Blacklist,
use the Active Directory Users and Computers interface to perform the
following:
1 Either:
click on Computers in the Tree pane, or
if Organizational Units have been created, click on the organizational
units subfolders until you reach the desired unit holding the computer.
2 Highlight the specific device, and right-click. Select Properties.
3 Select the Network Access tab from the Properties dialog window.