Link to home
Create AccountLog in
Avatar of pixelstation
pixelstationFlag for United States of America

asked on

Best practices to access corporate network from home

Where I work we have built our company around Microsoft technologies. We use active directory and exchange and have file storage. We have it on the local network behind a firewall. Exchange is the only one behind a public IP for accessing email from outside the office, and phones.

Now the boss wants to log into his corporate account from home and access his files from home. This lit up flags for me because of security and because of the way it was initially designed to be on the local network.  

I must say, my mind has a million questions and I'm not sure what's the best way to go about doing this for him.

Can anyone help me with some ideas on what's the best practices for this type of situation?
SOLUTION
Avatar of rindi
rindi
Flag of Switzerland image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Avatar of pixelstation

ASKER

Ah I should have included other information. I guess you can say we went bleeding edge. We used Server 2012. Everything is current. It's not a mixed environment yet at least. Thanks for all the info, I'll take all the info into consideration.

We are using a cisco asa firewall with vpn. I'll have to look into the vpn aspect of this particular model.

If I use something like vpn, will there be issues with logging into the domain? The computer connects to the vpn through a service running in the background I suppose and then the user can log into the domain?

I will look into direct access, never heard of that before. Sounds interesting.

Thanks everyone, I'm still taking all this info in so I appreciate all the comments.
ASKER CERTIFIED SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
Great tips and advice. And very fast. I am still working out the details but the vpn seems to be the way to go for now. Thanks!