|
Please help: My company is currently migrating from an NT domain
structure to AD... I have some questions regarding how some of you
went about hooking in your DMZ web servers to AD securely... What DID
YOU DO?!!!!!! What are the recommended best practices? The options we have discussed so far are: Option1: Join DMZ servers to AD domain, open a half dozen
ports on each server (Kerberos, LDAP, NetBios, etc) and lose the purpose of
having a DMZ altogether. Option2: Create a separate forest for the DMZ servers
and create a one-way trust between our two forests. Option3: Stand alone DMZ servers not joined to any
domain. All other options: ?????????????????????????????? Your suggestions are greatly appreciated! Is there even a need to hook DMZ into AD? I've
heard MS talk about needing AD for apps like Sharepoint Portal... Joe
Pelle Systems Analyst Information Technology Valassis / Targeted Print & Media
Solutions Tel
734.632.3753 Fax 734.632.6240 This message may have included
proprietary or protected information. This message and the information
contained herein are not to be further communicated without my express written
consent. |
- Re: [ActiveDir] what to do with DMZ servers Pelle, Joe
- Re: [ActiveDir] what to do with DMZ servers David Adner
- RE: [ActiveDir] what to do with DMZ servers Joe
- Re: [ActiveDir] what to do with DMZ servers Glenn Corbett
- RE: [ActiveDir] what to do with DMZ servers Jochen Andries
- RE: [ActiveDir] what to do with DMZ servers Craig Cerino
- RE: [ActiveDir] what to do with DMZ servers Roger Seielstad
- Re: [ActiveDir] what to do with DMZ servers jim . katoe
- RE: [ActiveDir] what to do with DMZ servers Raymond McClinnis
- RE: [ActiveDir] what to do with DMZ servers Rogers, Brian
- RE: [ActiveDir] what to do with DMZ servers Rick Kingslan
