Define Network Permissions and Connection Preferences

  • Article

Applies To: Windows Server 2008, Windows Vista

You can configure settings on the Network Permissions tab for your domain members running Windows Vista to which Wireless Network (IEEE 802.11) Policies apply. The settings apply only to networks that are not configured on the General tab in Vista Wireless Network Policy Properties:

  • Allow or deny connections to specific networks, specified by network type and Service Set Identifier (SSID)

  • Allow or deny connections to ad hoc networks

  • Allow or deny connections to infrastructure networks

  • Allow or deny users to view network types (ad hoc or infrastructure) to which they are denied access

  • Allow or deny users to create a profile that applies to all users

  • Users can only connect to allowed networks by using Group Policy profiles

Membership in Domain Admins, or equivalent, is the minimum required to complete these procedures.

To allow or deny connections to specific wireless networks

  1. On your domain controller running Windows Server 2008, open Vista Wireless Network (IEEE 802.11) Policy Properties, and then click Network Permissions.

  2. On the Network Permissions tab, click Add. The New Permissions Entry dialog box opens.

  3. In the New Permission Entry dialog box, in Network Name (SSID), type the network SSID.

  4. In Network Type, select Infrastructure or Ad hoc.

Note

If you are uncertain whether the broadcasting network is an infrastructure or ad hoc network, you can configure two network permission entries, one for each network type.

  1. In Permission, select Allow or Deny.

  2. Click OK, to return to the Network Permissions tab.

To specify additional network permissions

  1. On your domain controller running Windows Server 2008, open Vista Wireless Network (IEEE 802.11) Policy Properties, and then click Network Permissions.

  2. On the Network Permissions tab, configure any or all of the following:

    • To deny your domain members running Windows Vista access to ad hoc networks, select Prevent connections to ad-hoc networks.

    • To deny your domain members running Windows Vista access to infrastructure networks, select Prevent connections to infrastructure networks.

    • To allow your domain members running Windows Vista to view network types (ad hoc or infrastructure) to which they are denied access, select Allow user to view denied networks.

    • To allow users to create profiles that apply to all users, select Allow everyone to create all user profiles.

    • To specify that your users can only connect to allowed networks by using Group Policy profiles, select Only use Group Policy profiles for allowed networks.