AD Authentication in a DMZ (up) ?
- From: Pascal <pascal_t@xxxxxxxxxxxxxxxxxx>
- Date: Thu, 11 Oct 2007 11:44:53 +0200
Hi,
anybody has ideas or documentations about this classical question please ?
Thank you
Hi,
we have an application in our DMZ that needs to use Active Directory database for authentication.
Of course our AD domain controllers are in our LAN.
Is there a secure way to use AD Authentication for applications localized in a DMZ ?
Thanks a lot.
Regards,
Pascal
One option is to use ADAM with userProxy objects which will forward authentication requests to Your AD in LAN.
Other option is to use ADFS, but your application will have to be tested if it will work with ADFS.
Third option is AD forest in Your DMZ which will have trust relationship with Your main AD (I don't like such solution but this is also an option)
Thank you Thomas,
Why the third option is less secure than ADFS or ADAM ?
Is there another solution with a radius in the DMZ that will forward the authentication request to the DC in the LAN ?
Thanks
--
Pascal
.
- Follow-Ups:
- Re: AD Authentication in a DMZ (up) ?
- From: Jorge Silva
- Re: AD Authentication in a DMZ (up) ?
- References:
- AD Authentication in a DMZ ?
- From: Pascal
- Re: AD Authentication in a DMZ ?
- From: Tomasz Onyszko
- Re: AD Authentication in a DMZ ?
- From: Pascal
- AD Authentication in a DMZ ?
- Prev by Date: Re: AD Password Corruption - Is it possible, how does it happen and how do I stop it?
- Next by Date: Re: AD Password Corruption - Is it possible, how does it happen and how do I stop it?
- Previous by thread: Re: AD Authentication in a DMZ ?
- Next by thread: Re: AD Authentication in a DMZ (up) ?
- Index(es):
Relevant Pages
|
Loading
