configure DHCP NPS to restrict unauthorized client RRS feed

  • Question

  • Hi,

    We are planning to implement DHCP server on Windows 2008 R2 server. The requirement is how can I restrict unauthorised users to get the IP address from DHCP server. Like suppose an external visitor has come and plugged his Laptop in our LAN surely he will get a IP from DHCP and have our internal network access which i want to block. Only the Administrator can allow them in the network.

    Is there any way to configure DHCP on windows 2008 R2 to block such external or unauthorised users.



    Monday, July 23, 2012 8:19 AM


  • Hi Raju -

    This isn't possible with DHCP, but you can accomplish this by deploying 802.1X-capable switches with Network Policy Server as your RADIUS server. With these switches, the port is not opened - and thus a DHCP address cannot be obtained by the client device - until after NPS authenticates and authorizes the connection based upon the network policies that you create.

    Thanks -

    James McIllece

    • Proposed as answer by Ace Fekay [MCT] Monday, July 23, 2012 6:02 PM
    • Marked as answer by Raju81 Wednesday, July 25, 2012 6:55 AM
    Monday, July 23, 2012 5:41 PM