Windows 2000 introduces many new features designed to increase network security. One of these new features is the detection of rogue DHCP servers on the network. Before a DHCP server can begin leasing IP addresses to DHCP clients , it must first be authorized to do so within Active Directory. This eliminates the possibility of someone adding a Windows 2000 DHCP server to the network that hasn't been approved by the appropriate authority. Any DHCP server that hasn't been authorized is detected and the DHCP service will fail to start.
Authorizing the DHCP ServerA DHCP server can be authorized through the DHCP management console by an member of the Enterprise Admins group . To authorize a DHCP server, perform the following steps:
If a DHCP needs to be removed from the network, you should unauthorize the server so it no longer has the capability to lease IP addresses to clients. To do so, right-click the DHCP server within the DHCP console and select the Unauthorize option. Click Yes to confirm your actions. The DHCP server will then be removed from Active Directory.
|