Could you please explain me the best secured way of authentication for DMZ servers?
I have a application server hosted in DMZ and need to authenticate domain users for the web site installed on that server.
No internet users will be allowed - only domain users will be accessed
Server no need to talk any backend server( resource and IIS will be on the same server)
No ADFS or LDAP is allowed
Access for domain users must only be allowed to this box in DMZ not any other servers in DMZ
I was thinking to add one more NIC to server ( in this case only this network card will have root connection to domain as it will be on the domain segment?