<div>
Best practice is to connect it to the domain everytime<br />
Keith
</div>


Best practice is to connect it to the domain everytime
Keith

<div>
Thanks for that. Is there any documentation outlining this at all that I can look at and show to the powers-that-be?<br />
<br />
I tried to look but can't find anything. 
</div>


Thanks for that. Is there any documentation outlining this at all that I can look at and show to the powers-that-be?

I tried to look but can't find anything.

<div>
There was an article by one of the Microsoft guys regarding why ISA server should be connected to the domain. In the end, there are no security issues and you can assign domain user level access.<br />

</div>


There was an article by one of the Microsoft guys regarding why ISA server should be connected to the domain. In the end, there are no security issues and you can assign domain user level access.


<div>
<div class="content wysiwyg-content">
Hi,<br />
<br />
I have just build a TMG cluster, I will be moving it into our DMZ but was wondering if I should connect it to the domain or not. Any reason why I should NOT connect my TMG setup to the domain?<br />
<br />
Mostly I want to know about the security reasons behind why not to do it. <br />
<br />
Thanks<br />

</div>
</div>


Hi,

I have just build a TMG cluster, I will be moving it into our DMZ but was wondering if I should connect it to the domain or not. Any reason why I should NOT connect my TMG setup to the domain?

Mostly I want to know about the security reasons behind why not to do it. 

Thanks


Drawback of having my TMG cluster connected to the domain.

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Microsoft Forefront, formerly known as Internet Security and Acceleration Server (ISA Server), is a network router, firewall, antivirus program, VPN server and web cache that runs on Windows servers. It includes identity management and protection systems, and discontinued systems for threat management and network protection, along with protection for Sharepoint and Exchange. The scope of discussions includes forward and reverse proxy, application and service publishing, virtual private networks (VPNs), outbound access rules, SSL certificates and network routing within either a single node or an highly-available array pairing.