Is a Domain Controller Required for a ISA Site-2-Site VPN?
Posted on 2006-07-02
I am trying to create a branch office to sustain about a dozen users for several months until they rejoin the main workforce. I want to minimize the number of servers necessary. The users need to be able to access resources on the company's domain. AFAIK the only resource at their site (besides the local desktops) will be one printer. I have already installed ISA Server 2004 on the remote branch server (link not up yet) and the main office also uses ISA Server 2004, but now I am wondering if I also need to install DNS and/or a Domain Controller.
If they will login to the domain as they power up their computers I guess they will need a local DC, right? If so, can I make the ISA Server a DC (realizing it is not a good idea from a security standpoint)? I know I can put DNS on the ISA Server. I think I can handle the L2TP/IPSec Site-to-Site VPN, but I am not sure about the DC and DNS requirement.
Can someone point me in the right direction? Is there a good document to which I can refer?