RE: Microsoft Active Directory security concerns

Hi Jason,

I am very delighted by your message because I was doing research on this
subject for the past few months. I came to the conclusion that I have to use
AD for the internal users and ADAM for the external users, but now the
implementation seems a bit tricky.

I need IIS to authenticate the users, how will IIS know when to look in AD
and when to look in ADAM? Does this have anything to do with proxy
redirection from ADAM to AD or do you have to synchronise all users to ADAM
and then somehow make IIS look solely at ADAM for authenticating both the
internal and external users?

Does this solution mean development of software where the software first
tries AD and if it is failing then go to ADAM for the authentication?

Does anyone have some direction where I can read more about this? I cannot
find resources dealing directly with this issues.


View this message in context:
Sent from the Security Basics forum at

This list is sponsored by: SensePost

Hacking, like any art, will take years of dedicated study and
practice to master. We can't teach you to hack. But we can teach you
what we've learned so far. Our courses are honest, real, technical
and practical. SensePost willl be at Black Hat Vegas in July. To see
what we're about, visit us at: