This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 56.00000000000001%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
We are using Windows FW in Active Dircetory's Group Policy to control access to computers of users registered in the AD domain.
Currently, access control is done by specifying the IP address of the target AD user's computer in the scope of Group Policy FW.
In the future, we would like to implement access control using a method other than specifying IP addresses because the IP addresses of computers change dynamically.
Is there any good way to do this?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 30%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEY%3C/text%3E%3C/svg%3E)
Hi,
Below article describe different security policy settings that can control user authentication to a network or device, the resources that users are permitted to access, whether to record a user's or group's actions in the event log and membership in a group.
https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/security-policy-settings
From your description, it seems that you can use User Rights Assignment policy.
User Rights Assignment. Specify the users or groups that have logon rights or privileges on a device.
Best regards,
If the Answer is helpful, please click "Accept Answer" and upvote it. Thanks.