Hey, What sort of methods do people use to secure their extranets ? It's easy to increase session security (as in once a user is authenticated) using SSL etc, but how do you authenticate users ? An ideal solution is to be able to authenticate against a domain controller on the internal network, but if you have your extranet on a DMZ then this becomes impractical (unless you want to open up all those ports to your domain controller, something that I don't want to have to do !). I know that securID is an option, but this has many hassels associated with it and is a rather expensive solution if you have a large user base. Do people keep their extranets on the internal network (doesn't sound too hot if you are running IIS) ? Does anyone have any ideas on how to provide good portable authentication to an extranet, and also where should an extranet live on the network infrastructure ? Cheers, Alex Hague Internet Support Officer Auckland City Council - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
