I think what you are trying to do may not be possible. These dongles are not so complex in design, they are made for ease of use and as such they do not have features to restrict where they can be used or not.

The only feasible way it to configure your platform such than only the designated laptops can connect from the outside by VPN by using the MAC (Physical) address of the laptops cards as well as the dongle's MAC address. This will at least ensure who ever is connecting to your back-end is using your 'authorized' machines.