I have an active directory (domain) in which several of
our subcontractors share the network link to access common
data on our server. Normally, I set up their workstations
and place them on the domain so they can access these
shared resources. Recently, one of the subs bought a new
pc from Dell and just plugged it into the network. They
signed in with their user name and password but never put
the w/s on the domain. Now, they have complete access to
all the shares because they are logged in as a valid user;
but they are not on the domain so I can't control policies
Q: is there any way to allow only workstations that are on
the domain access and to deny access to any "foreign"
workstations that are either on another domain or simply
in a workgroup?