I have a situation where users a should not be able to login to user b machine as the same goes to user b as well.
Is there a way to map the HIP profile to a specific user like mapping the specific mac address to a specific user so that the mentioned user alone gets logged in to that specific system or machine.
Kindly share any documents related to this.
Thanks
Vijay
Not that I'm aware of...
Is there any document that could be referred for doing this activity.
MAC addresses can't be used in this way You could try creating HIP profiles to match for the host ID (GUID on windows) (hkey_local_machine\software\microsoft\cryptography\machineguid)
The systems will be office systems with their HIP configured.
For example user a has a unique mac address on his system and user b has his unique mac.
When user a connects to user b machine the user a should not be allowed to log in so. And the same goes to User b.
For this method using the HIP such as mac information can we restrict the usage of other users system.
Awaiting for your update
Could you sketch the situation? Are users remote and machines local or vice versa? You could leverage a combination of source-user destination-user and FQDN objects for the machine dns record in AD