Home page logo

basics logo Security Basics mailing list archives

DMZ and AD Authentication
From: <Geoff.Shatz () pchelps com>
Date: Fri, 12 Dec 2003 10:32:46 -0500

We are in a situation where we are currently planning the move of our web server from an externally hosted solution to 
hosting the web server in house. As part of this move we will be implementing a new internal application that will run 
on the web server that will require authentication based on Active Directory account info. Obviously this will require 
that the web server has the ability to communicate with the AD domain controllers. That being the case will it still be 
possible to place this web server on a DMZ or will the amount of open ports required between the DMZ and LAN for the 
required authentication process severely mitigate the benefits of placing the server in the DMZ in the first place? Any 
and all suggestions and or strategies to accomplish this in the most secure fashion are welcome and appreciated. Thanks!



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]