Tim, A few things to think about: 1. Does the client have a current network that they authenicate against? If it is Active Directory, you can tie into that using cfldap, and there are hooks for other systems. You will still probably have to create tables in your application structure to handle local permissions, but it is nice to not have to deal with usernames/passwords if you can get away with it.
2. Make sure that any passing of username/password is encrypted, and have a policy to not have them access it through internet cafes...especially if overseas. I had a situation where a client had his username/password stolen when he used a computer in an internet cafe in Prague...possibly a keylogger or someone just looking over his shoulder. 3. Is it only CF based apps? In my experience, once the "intranet" is set up, the cleint often wants all their (non-cf) apps to have links on the intranet, and expect them to work since they are already logged in. Single sign on is a whole other animal, but it's better to discuss that upfront, and know what their expectations are. 4. Read up on web application security best practices...generally you will find that the advice is "less is better". If you don't need a service, turn it off. If the box doesn't need to be part of the domain, make it standalone. If you can partition it away from the rest of the network, and only allow through needed services, all the better. HTH, jim On 1/11/06, Tim Laureska <[EMAIL PROTECTED]> wrote: > I've been asked to quote on an "intranet project" that will involve a > Win 2003 server/SQL server based in one city with multiple users > throughout the states. they want to access that server (which will run > CFMX server) via CF apps to be developed... Are there any > recommendations on the best way to set this up. being the first time > I've set up something as this . . what is a typical arrangement for > something like this- any suggestions would be appreciated? > > > > > > Tim > > > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:229198 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
