Solved

Is a Domain Controller Required for a ISA Site-2-Site VPN?

Posted on 2006-07-02
3
230 Views
Last Modified: 2013-11-16
I am trying to create a branch office to sustain about a dozen users for several months until they rejoin the main workforce.  I want to minimize the number of servers necessary.  The users need to be able to access resources on the company's domain.  AFAIK the only resource at their site (besides the local desktops) will be one printer.  I have already installed ISA Server 2004 on the remote branch server (link not up yet) and the main office also uses ISA Server 2004, but now I am wondering if I also need to install DNS and/or a Domain Controller.

If they will login to the domain as they power up their computers I guess they will need a local DC, right?  If so, can I make the ISA Server a DC (realizing it is not a good idea from a security standpoint)?  I know I can put DNS on the ISA Server.  I think I can handle the L2TP/IPSec Site-to-Site VPN, but I am not sure about the DC and DNS requirement.

Can someone point me in the right direction?  Is there a good document to which I can refer?

Thanks!

Tom
0
Comment
Question by:tomwsimon
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 125 total points
ID: 17029145
Check out www.isaserver.org for the latest recommendations on ISA back to back/hub and spoke.

also, http://www.msfirewall.org/isa2004kits.htm

This has a copy of the isa2004 guides....
0

Featured Post

Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question