• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 230
  • Last Modified:

connect to AD from different environment

i have a certain service that gets/needs to connect to AD to get the users that can access to the services. This services is on a different machine, outside the domain of AD (different ISP).
this means that AD needs to be availible for the outside world. What kind of protection can i use to make this a secure process? is ssl prossible? other ideas?
2 Solutions
Glen KnightCommented:
What sort of query does it use?  Bear in mind that even a simple LDAP query means your Active Directory data is available outside of your network.

Create ADAM instance in your dmz, then sync data required for external services with your AD using ADAMSync. This way only ADAM instance with limited data will be exposed to external world.

Is this a web service? I would think, first...you would need to have a route the 'other' network address. The 'other' network  router would in turn (the one offering the service) have a rule allowing your network subnet access to their specific public IP and their specific ports.
You might need a DNS entry (zone file) for the 'other' network or at the very least...an entry in each of your machines hosts' file.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now