?
Solved

DMZ - IIS AD Authentication

Posted on 2011-10-17
2
Medium Priority
?
581 Views
Last Modified: 2012-05-12
Hi Experts,

We have a web server (Windows 2008 R2 - IIS 7) that sitting inside the DMZ. And we have a web application that requires an AD authentication (users login using their domain username and password).

What is the best practie to achive this?
RODC? ADFS? or is there any other way?
Can you also please help me with the step by step? (please note that we don't have an ISA server)

AD Authentication from DMZ is a new thing for me; so I need a detailed explanation.

Thanks very much.

Cheers
0
Comment
Question by:DAHITSydney
2 Comments
 
LVL 13

Accepted Solution

by:
p_nuts earned 2000 total points
ID: 36983372
There's a couple of ways you can do this.

1 an authentication webservice
With this you basically build a web service that receivesa user and pwd and runs it to a dc to check.
2 an rodc in the dmz ..
3 federation services

In any case you need some dmz machine to operate on it.  
0
 
LVL 2

Author Closing Comment

by:DAHITSydney
ID: 37126269
thank you
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

High user turnover can cause old/redundant user data to consume valuable space. UserResourceCleanup was developed to address this by automatically deleting user folders when the user account is deleted.
Let's take a look into the basics of ransomware—how it spreads, how it can hurt us, and why a disaster recovery plan is important.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question