type project is dated so I want to make sure I know about the latest methods. Thanks in advance.
We are creating an extranet web site that will sit on our DMZ/IAS and I would like to authenticate it from our Active Directory on our private LAN. So I am looking for recommendations on a secure but not too technically complex method to authenticate
our extranet against our Active Directory. Each network segment is connected to a Sonicwall NSA240 firewall.
-
Single Win 2008 R2 IIS web server hosted on DMZ
-
Single forrest, single domain, AD located on LAN
-
AD is 2008 R2 level
-
Want to Authenticate users only to get in the front door of the extranet. Do not need to use groups to restrict certain content. Simply want to control access into the site.
-
FYI -- We do have a single exchange 2007 server located on our LAN. We allow SSL access to webmail and Outlook anywhere through our firewall.
I would like to entertain all possibilities at this point if there is software or hardware that I can purchase or upgrade to make this easier I will certainly consider. We have Hyper-V virtual platform with datacenter host licenses so
spinning up additional Windows 2008 servers is very low cost for us. I am curious if read only domain controllers play a role in this scenario and also if ISA server is still around and what role it would play.
Thanks much for any advice given.
Clay
There is an amazing pack of free network admin tools. click here to download it
Other recent topics
