Solved

Is a Domain Controller Required for a ISA Site-2-Site VPN?

Posted on 2006-07-02
3
228 Views
Last Modified: 2013-11-16
I am trying to create a branch office to sustain about a dozen users for several months until they rejoin the main workforce.  I want to minimize the number of servers necessary.  The users need to be able to access resources on the company's domain.  AFAIK the only resource at their site (besides the local desktops) will be one printer.  I have already installed ISA Server 2004 on the remote branch server (link not up yet) and the main office also uses ISA Server 2004, but now I am wondering if I also need to install DNS and/or a Domain Controller.

If they will login to the domain as they power up their computers I guess they will need a local DC, right?  If so, can I make the ISA Server a DC (realizing it is not a good idea from a security standpoint)?  I know I can put DNS on the ISA Server.  I think I can handle the L2TP/IPSec Site-to-Site VPN, but I am not sure about the DC and DNS requirement.

Can someone point me in the right direction?  Is there a good document to which I can refer?

Thanks!

Tom
0
Comment
Question by:tomwsimon
3 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 125 total points
ID: 17029145
Check out www.isaserver.org for the latest recommendations on ISA back to back/hub and spoke.

also, http://www.msfirewall.org/isa2004kits.htm

This has a copy of the isa2004 guides....
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Suggested Solutions

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now