FTP server in DMZ and authentication to/from internal AD
- From: myoman <myoman@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 4 Oct 2007 11:08:02 -0700
All,
I was hoping to get some advice on how others deal with having internal AD
users connect to an FTP server located in the DMZ. This is a legacy system
that worked fine before we required users to change their passwords in AD
every 60 days. Now, we have to change the local account on the FTP server so
they can reconnect their mapped drives. There are about 30 uses who connect
in this way and they use it for putting financials, vendor contracts, specs,
etc..... on the FTP box that the external users grab and vice versa.
I'm thinking of having a Virtual Directory on the FTP server that points to
an internal (inside of the DMZ) share where the users put/get their stuff.
Besides security concerns, are there known issues with this?
I've also thought of just having our internal folks access the FTP box via
FTP instead of mapped drives and such. However, I believe that there are jobs
that actually put the data directly to the FTP box via mapped drives instead
of through FTP. This is totally controlled by the departments so we have a
bit of research left.
Are there any tools available that can securely replicate the internal AD
accounts (Roughly 50 accounts and all are just Domain Users) to the FTP
server?
Thanks for any advice.
Craig
.
- Follow-Ups:
- Prev by Date: Re: USERENV Events 1030/1058 Access Denied to GPT.ini
- Next by Date: Re: raising domain functional level
- Previous by thread: Re: Ultimate Domain Controller Best-Practice-Setup-Checklist?
- Next by thread: Re: FTP server in DMZ and authentication to/from internal AD
- Index(es):
Relevant Pages
|
