Re: AD for webhosting?
From: karl [x y] (jamescagney90210@excite.com)
Date: 08/15/02
- Next message: karl [x y]: "Re: Admin lockout"
- Previous message: Joshua Heslinga: "Re: can't log out with auto logon enabled"
- In reply to: P: "AD for webhosting?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "karl [x y]" <jamescagney90210@excite.com> Date: Thu, 15 Aug 2002 06:17:31 -0400
"P" <sdfsd@sdfsd.com> wrote in message
news:_mI69.13039$Cq.523323@ozemail.com.au...
> We host a few win2k webservers. Until now we have made them standalone
> servers in their own little workgroup. However we want to implement
standard
> IPSEC policies for some traffic and be able to apply security
configuration
> templates centrally.
>
> But we are concerned about AD on public hosted servers. We use AD for our
> internal network, but I don't feel comfortable with it in the hosted
> environment.
If you only have a few win2000 servers, I don't really see the benefit of
implementing AD, especially since ideally you'd want these to be on at least
two additional non-web servers, which adds expense. You could use simple
batch files and/or scheduled tasks to copy Group policy templates containing
IPsec policies and apply them using the SECEDIT command.
I don't think this is the ideal way to modify existing filters, but I
believe another way to distribute IPsec filters is by using IPSECPOL from
the windows 2000 resource kit and
possibly available for free download from www.microsoft.com/download
Utility described at:
http://www.google.com/search?hl=en&ie=ISO-8859-1&q=windows-2000+ipsec+comman
d-line+filters+apply
- Next message: karl [x y]: "Re: Admin lockout"
- Previous message: Joshua Heslinga: "Re: can't log out with auto logon enabled"
- In reply to: P: "AD for webhosting?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
