site-to-site VPN domain help
Posted on 2006-11-30
I have a site-to-site VPN that is currently working between two Cisco Pixs. My current setup is:
Site A has no domain. Site A has a Terminal Server (Windows 2003).
Site B has a domain controller (Windows 2003).
Currently, Site A has users set up in "Computer Management" not Active Directory.
Site B has users set up in Active Directory.
So all users have to connect to Site A's Terminal Server with one username and Site B's with another. We would like to consolidate this, however, using our current hardware/software.
Microsoft suggests not making a Terminal Server a Domain Controller, and we don't want to have to buy another Windows Server 2003 to act as a domain controller at Site A.
How can we have Site A's Terminal Server authenticate through Site B's domain controller? Additionally, is this wise?