Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Making an ECM (OpenText Content Server 10) available to external parties over the internet

Posted on 2014-03-17
4
Medium Priority
?
529 Views
Last Modified: 2016-12-07
We are running OpenText Content Server 10 in our company.  Currently our internal users access via a web interface or with a desktop client. We have a need to give access to a couple outside parties for collaboration.  I am trying to find a secure solution to this but am banging my head against the wall.....Here's what I was thinking....Anyone have any suggestions?  advice?

- Create a NAT policy on my firewall (SonicWall NSA3500) from one of our public IP to the internal IP of the server.
- Purchase a trusted cert and install on the server(IIS)
- Create local(app) accounts for these people in CS10 with limited access to ONLY the folders they need.
- If these folks are all connecting from just a few IP addresses, I could also limit access based on IP addresses.


Good idea?  Bad idea?? We are trying to make this as easy as possible for the outside parties, so the executives really don't want to have to have them install a VPN client....
0
Comment
Question by:tenover
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 8

Expert Comment

by:N-W
ID: 39941018
Locking down the firewall rules to certain IP addresses is a good idea. You could also potentially limit the firewall rules to be active on a schedule (i.e. only during business hours).

As long as the IIS server is secured and the user's passwords are strong, you shouldn't have an issue.
0
 

Author Comment

by:tenover
ID: 39941126
That's what I figured. When you say "as long as the IIS server is locked down", do you mean with a secure certificate and no anonymous access, or something more?
0
 
LVL 8

Accepted Solution

by:
N-W earned 2000 total points
ID: 39941147
There's a lot more to consider. Have a look through this to give you an idea: http://blogs.msdn.com/b/alikl/archive/2008/02/28/securing-iis7-windows-server-2008-security-guide.aspx
0
 

Expert Comment

by:Reiner Merz
ID: 41917556
Think of using Domains in the Content Server if you do have external contacts and internal. Domains will separate this groups by building a "separate virtual content server" for the external users. Domains are avaliable in 10/10.5 and 16
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In a previously published article (http://www.experts-exchange.com/articles/10331/Automatic-Duplex-Scanning-in-PaperPort-Versions-11-12-14.html) here at Experts Exchange, I explained how to achieve duplex (double-sided) scanning in Nuance's PaperPor…
Like many organizations, your foray into cloud computing may have started with an ancillary or security service, like email spam and virus protection. For some, the first or second step into the cloud was moving email off-premise. For others, a clou…
In this video, we show how to convert an image-only PDF file into a PDF Searchable Image file, that is, a file with both the image (typically from scanning) and text, which is created in an automated fashion with Optical Character Recognition (OCR) …
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question