Network access control can be restricted in Windows using either the local computer’s Group Policy or the network’s Domain Group Policy.
Through the Local Computer’s Group Policy
1. First, open the Start menu and type “gpedit.msc” into the run box then press enter. This will open the Local Group Policy Editor.
2. Next, Navigate to the following path: Computer Configuration > Administrative Templates > Network > Network Connections
3. Select the option for “Prohibit installation and configuration of Network Bridge on Your DNS domain”
4. Double-click the option and select “Enabled”
5. Click the “Apply” button
6. Select the option for “Restrict access to the following types of device:”
7. Select the checkbox next to “Network Adapters”
8. Click the “OK” button
9. You may also want to enable the “Prevent un-authorized access to the wireless LANs” setting if you are using wireless network cards.
10. Finally, click “Apply” and “OK” for the changes to take effect.
Through the Network’s Domain Group Policy
1. First, open Active Directory Users and Computers (ADUC) by opening the run box and typing “dsa.msc” into the run box then pressing enter.
2. Next, navigate to the “Groups” folder and create a new group. Name the group “Network Card Restriction” then add the necessary users to this group.
3. Now right-click on the domain name and select “Properties”
4. On the properties window select the “Group Policy” tab
5. Click “New” and name the policy “Network Card Restriction”
6. Select the group you created earlier then click “OK”
7. Now double-click the Group Policy you have just created
8. Navigate to Computer Configuration > Administrative Templates > Network > Network Connections
9. Select the option for “Prohibit installation and configuration of Network Bridge on Your DNS domain”
10. Double-click the option and select “Enabled”
11. Click the “Apply” button
12. Select the option for “Restrict access to the following types of device:”
13. Select the checkbox next to “Network Adapters”
14. Click the “OK” button
15. You may also want to enable the “Prevent un-authorized access to the wireless LANs” setting if you are using wireless network cards.
16. Finally, click “Apply” and “OK” for the changes to take effect.
These steps will allow administrators to restrict access to network cards and bridge connections on their networks. By limiting the access one can help to easily manage access to resources on the network as well as minimize security risks.