IN case you don't already have them - this covers pretty much all you need to know for the AD upgrade
AD update checklist: http://technet2.microsoft.com/windowsserver2008/en/library/7a0d7350-e893-481b-ac20-b38b4927c3fa1033.mspx Deployment Guide for upgrading Windows Server 2003 to Windows Server 2008 domains: http://technet2.microsoft.com/windowsserver2008/en/library/9c91be5f-df14-40b2-b176-2b1852a51e611033.mspx Cheers Ken From: Jon Harris [mailto:[EMAIL PROTECTED] Sent: Wednesday, 23 July 2008 7:06 PM To: NT System Admin Issues Subject: Re: ASA question...how to auth to AD Thanks Ken! That is the best article I have seen so far on that technology. To be honest though I only started yesterday. I had to do all the research on bringing a 2008 DC up in a 2003 domain running at a 2000 native level. Now that it is done I can go on to look at this. Then on to either SCE or bringing up the ASA 5510 depends on what is needed first. Jon On Wed, Jul 23, 2008 at 4:46 AM, Ken Schaefer <[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>> wrote: NPS is the new IAS. NAP is something different (but includes NPS as part of the infrastructure) http://technet2.microsoft.com/WindowsServer2008/en/library/b1a177e6-fd36-4396-9fe7-314460d83c3f1033.mspx HTH Cheers Ken From: Jon Harris [mailto:[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>] Sent: Wednesday, 23 July 2008 6:42 PM To: NT System Admin Issues Subject: Re: ASA question...how to auth to AD If you do this from a Windows 2008 server then it is not IAS any more it is NAP (Network Access Protection) but I have found more on NPS (sorry forgot what that one means). Under 2003 IAS works great for this at least it does for a PIX. As soond as I finish bringing up my new DC with NAP/NPS on it I can tell you how well 2008 does. Jon On Tue, Jul 22, 2008 at 5:29 PM, Todd Lemmiksoo <[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>> wrote: thanks, I will lookup IAS in TechNet. Todd ________________________________ From: Michael B. Smith [mailto:[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>] Sent: Tuesday, July 22, 2008 5:20 PM To: NT System Admin Issues Subject: RE: ASA question...how to auth to AD You would generally use IAS as an intermediary - the Windows version of RADIUS. (This was true on the PIX, I've never done anything with ASAs, but I doubt they've learned to speak Kerberos or NTLMv2.) Regards, Michael B. Smith MCITP:SA,EMA/MCSE/Exchange MVP http://TheEssentialExchange.com<http://theessentialexchange.com/> ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
