Link to home
Start Free TrialLog in
Avatar of CaptainGiblets
CaptainGibletsFlag for United Kingdom of Great Britain and Northern Ireland

asked on

DMZ authenticating to domain controller

i have a server set up in a DMZ, it was originally on my internal network and a member of the domain, i have moved it to a DMZ and still want to be able to log on using my domain account. however when i try this at the moment i get a PDC error, i also cant authenticate to my internal SQL server, it wont even let me telnet into port 1433.

My ISA server which has the DMZ has allow all ports from internal / dmz to internal / dmz

where am i going wrong?
Avatar of Keith Alabaster
Keith Alabaster
Flag of United Kingdom of Great Britain and Northern Ireland image

What is the relationship between the dmz network and the internal network? It will need to be 'route', not NAT.
Avatar of CaptainGiblets

ASKER

both directions are set to route not nat.

weirdly if i access the Sharepoint server on DMZ server it will authenticate me to the server using windows authentication, but i cant authenticate from the DMZ server to the internal network.
ASKER CERTIFIED SOLUTION
Avatar of Keith Alabaster
Keith Alabaster
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
it's isa 2004 fully updated.

The system policy rules are in place to allow all traffic from DMZ & internal to DMZ & internal
i have managed to fix this, it was my own fault, i had my 2 domain controllers on a different ISA server than my DMZ.
lol - Haven't we all been there?

:)