Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

domain vs non-domain windows laptop

This thread has been viewed 2 times

  • 1.  domain vs non-domain windows laptop

    Posted Apr 05, 2017 07:53 AM

    Hi, is there a way to know of the two devices,

    1. a laptop which has joined windows-domain

    2. and a laptop which has NOT joined windows-domain

     

    is there  a way differentiate this two?



  • 2.  RE: domain vs non-domain windows laptop
    Best Answer

    EMPLOYEE
    Posted Apr 05, 2017 08:10 AM

    You can configure your domain laptops to machine authenticate.  That would be the differentiator.



  • 3.  RE: domain vs non-domain windows laptop

    EMPLOYEE
    Posted Apr 05, 2017 08:11 AM
    You would need to leverage machine authentication and/or machine certs.


  • 4.  RE: domain vs non-domain windows laptop

    Posted Apr 05, 2017 08:17 AM

    is that mean i have to manually configure network profile from group policy? because windows will use both user and machine authentication by default right?



  • 5.  RE: domain vs non-domain windows laptop

    EMPLOYEE
    Posted Apr 05, 2017 08:34 AM
    You have to decide if you want both user and machine identity or just machine.


  • 6.  RE: domain vs non-domain windows laptop

    Posted Apr 05, 2017 09:09 AM
    Let's say i want my CPPM rule to consider all machine auth are windows domain and all user auth are non-domain.
    What do i have to do to achieve that?


  • 7.  RE: domain vs non-domain windows laptop

    EMPLOYEE
    Posted Apr 05, 2017 09:21 AM
    Yes, but do you still want user visibility for the domain machines?


  • 8.  RE: domain vs non-domain windows laptop

    Posted Apr 05, 2017 11:40 AM
    Yes i do. What do you suggest?
    I cannot use both user and machine auth at the same time right?