?
Solved

can i use active directory rights mangement services outside of the company domain

Posted on 2012-03-30
4
Medium Priority
?
222 Views
Last Modified: 2012-05-18
can i use active directory rights mangement services outside of the company domain on a large scale
if so
how is this achieved
best practice for deploying this
0
Comment
Question by:dougdog
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 37787297
It can be done,  I won't blow smoke here, something I've never done.  We had RMS at my last job internally but it was a classified network and we didn't extend it

http://technet.microsoft.com/en-us/library/hh311038(v=ws.10).aspx
http://technet.microsoft.com/en-us/library/dd996632(v=ws.10).aspx

You can search around for more info.

It is going to take a lot of research and planning.

Thanks

Mike
0
 

Author Comment

by:dougdog
ID: 37787314
is it more designed for internal use?
0
 
LVL 26

Accepted Solution

by:
MidnightOne earned 2000 total points
ID: 37863896
Short answer: Yes, it can be used for external clients. Yes, it is FAR easier for internal use only.

Longer answer: It requires such an interlocking set of services (SQL, CA infrastructure, OCSP integrated with IIS, client organization CA integration) that it frequently isn't worth the effort.

In addition to mkline71's links, check out the step by step guide to AD RMS as well.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Getting to know the threat landscape in which DDoS has evolved, and making the right choice to get ourselves geared up to defend against  DDoS attacks effectively. Get the necessary preparation works done and focus on Doing the First Things Right.
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question