Ping a Specific Port

Question

Farlop

Asked: 2013-09-04 02:23:15 +0800 CST2013-09-04 02:23:15 +0800 CST 2013-09-04 02:23:15 +0800 CST

allowing only access to TFS to external

772

Recently I've found the need for allowing access to external people to my TFS server, but I have to be sure that they can't access others servers. This is what I've tried so far:

Created a security group in domain called: 'external users - no login'
Changed domain group policy 'Deny log on locally' to include this group
Created a security group in domain called: 'external users - no network'
Changed domaing group policy 'Deny access to this computer from the network' to include this group.
Created the user and added to the two groups created before

All restrictions work fine, but also TFS server has become inaccesible to these users. Is there a way to simply deny access to any computer in the network, but let connect to TFS, like an exception, or something like that?

1 Answers

Voted

Greg Askew · Answer 1 · 2013-09-04T02:53:31+08:00

Best Answer

Greg Askew

2013-09-04T02:53:31+08:002013-09-04T02:53:31+08:00

Put the TFS server in its own OU. In Group Policy Management Console, right-click the OU and select Block Inheritance. You will need to explicitly link any GPO's to that OU that you need.

Probably a good idea to not have the restrictions in the Default Domain Group Policy. Create a separate GPO for that.

0

allowing only access to TFS to external

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?