Results 1 to 3 of 3

Thread: Active Directory and DMZ design query

  1. #1
    Join Date
    Jan 2004

    Active Directory and DMZ design query

    I am facing problem with Active Directory DC and DMZ. I need some help here in fixing the same. There is a internal network in our company with dmz zone. There are some application configured on the same with IIS server. All the DC are placed on the internal lan and the iis server in on the server. From security point of view this can be proper. But from design point of view this looks like less secure to me. I need some help here. I want to run SQL clustering and somehow the dmz server will be the part of the same. What is the best way to configure that. It is fine to keep all the ports open or simply configure this on a single port.

  2. #2
    Join Date
    Sep 2004

    Re: Active Directory and DMZ design query

    Using firewall on domain or forest can restrict accessibility. Here using LDAP authentication is quiet good option according to me. This can help you more in many ways. You can simply use the same to provide access to the internal users via normal windows account. There are complex solution available is ADAM and ADFS. You can also go for the same but better collect some reference before.

  3. #3
    Join Date
    Nov 2005
    Try not to place the DC no your DMZ. Because there is a security risk in it. If someone hacks the account then he might gain access to the domain and can manipulate settings. While firewall can be secure but accessibility is blocked to some extent. You will face problem with external connectivity.

Similar Threads

  1. Replies: 5
    Last Post: 22-05-2010, 07:33 AM
  2. Best Practice Active Directory Structure/Design
    By dave@at in forum Active Directory
    Replies: 2
    Last Post: 16-10-2009, 03:49 AM
  3. Need Design help to query the databse.
    By Kiran123 in forum Software Development
    Replies: 4
    Last Post: 06-02-2009, 04:33 PM
  4. Active Directory best practice design
    By vonbubba in forum Active Directory
    Replies: 3
    Last Post: 29-05-2008, 12:19 AM
  5. Replies: 1
    Last Post: 07-02-2008, 09:23 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts