Hello Baljeet.
First of all, I think you could use the Windows Regedit for validate the DOMAIN with a register-key depending the name with a custom policies and use "Register value equal". For example if the domain SYMANTEC the policy pass give the service but if not fail send the quarantine. Is very simple.
If you use LAN Enforcer you can use the Dinamyc VLAN in the switch, configure a VLAN quarantine with only access to remediation services, but if you use Self-enforcer you need configure firewall policies in the part Quarantine Policies when the Host Integrity Fail.
Check this.
http://www.symantec.com/business/support/index?page=content&id=HOWTO11091
and If you have a co-worker with symantec Partnernet account there are some videos very clear refer to the Self.enforcer and a little guide.
I hope this help you.