dhcp and OU

[tran008]

Hi all,

it is possible to set up the dhcp scope to lease the ip within the scope to clients base on the AD OU? The reason for this setup is that the network admin want to monitor, give and restrict access from the firewall for different departments.

thanks

 

[FaiTHLeSS]

The network interface comes up before the client logs in, so they would already have obtained a lease from the DHCP. What do you want to restrict access to and from? If the internet then you might want to look at something like ISA server.

 

[GrimDeath]

The answer is no. The DHCP address request is completely independant of any AD (I) OU (ha ha)

I don't know how good a setup you got, but I have set many (cost effective) control systems up with just some login scripts and security enforcement (.BAT, GPO or equiv.)

Give us some more info on your topo...

 

[tran008]

I just inherited a network consist of w2k servers, with 150+ users running w2k-Pro and a firewall. All these workstation had static ip address, which allow the firewall to control which machine can get internet access. As you can see 150+ is not much, but the company is growing and maintaince the static ip scheme in the long run is kinda hectic. I'm consider install an ISA, but owner, which is cash conscious, does not want to put out the cash for another server for now.

 

[Shekinah]

You can configure DHCP to give the same address to the same machine through a reservation. It will still have a lease time so the client will check in from time to time for changes in other settings. To set the reservation you will need the MAC adress of the NIC in the client. You can get that through doing and ipconfig/all on the client.

Hope this helps.