Why isn't traffic filtered by Active Directory users with Firewall with Advanced Security?

M

Maxim2020-01-07 17:20:04

Active Directory

Maxim, 2020-01-07 17:20:04

It is necessary to configure the restriction of access to the service on a specific port using a firewall, taking into account the membership of users in groups.
There are two computers:
the first domain controller and a terminal server.
the second server with the service to which you want to filter connections.
both computers in the domain, with the policy configured ipsec in transport mode, which only works for tcp with a specific port.
there is a trusting relationship between them.
After specifying the users who are allowed to connect, the connection is not established.
If you specify a permitted computer, everything works.
Authorization on the computer is not suitable.
Not sure what information is needed. Ask, I will provide.

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

M

Maxim, 2020-05-07
@maxpointn2point

It was necessary to create a connection security rule

A

Alexey Dmitriev, 2020-01-07
@SignFinder

Start by confirming that you've unloaded gpresult and verified that the policies are correctly applied and that the Firewall rules are accurately delivered to the computers.