Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
How to Use IAS and Cisco Hardware to Limit a Network Connection to a Specific IP Address
Article ID: 283829 - View products that this article applies to.
This article was previously published under Q283829
This article describes how to configure Internet Authentication Service (IAS) and Cisco hardware to restrict network access based on IP address. You can do this by using an access list (as long as each user or group of users has a known IP address) and specific Remote Authentication Dial-In User Service (RADIUS) attributes.
To set up restricted network access that is based on IP address, you must change the configuration of both IAS and the Cisco network access server (NAS). The configuration for your environment varies depending on your specific hardware and software versions.
To configure the Cisco NAS, you must use the commands specific to your hardware and the Cisco Internetwork Operating System (IOS) version. For more information about how to configure the Cisco NAS, visit the following Cisco Web sites:
To configure IAS RADIUS settings on the Windows 2000-based server, use either of the following methods:
Method 1: Use a Vendor-Specific Attribute
Method 2: Use a Standard RADIUS Attribute Filter-ID
For additional information about how to configure vendor-specific attributes for a remote access policy, click the following article number to view the article in the Microsoft Knowledge Base:
319824The third-party products that are discussed in this article are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, regarding the performance or reliability of these products.
(http://support.microsoft.com/kb/319824/EN-US/ )HOW TO: Configure Vendor-Specific Attributes for a Remote Access Policy in Windows 2000