RE: Servers in DMZ particpitating in internal Domain
From: Jeff Qiu (jefffqiu_at_online.microsoft.com)
Date: 05/14/03
- Next message: Henrik Andersson: "Re: Kerberos logon failure - Windows Server 2003 RTM"
- Previous message: David Francis: "Windows Sharing Problem"
- In reply to: Bob: "Servers in DMZ particpitating in internal Domain"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 14 May 2003 06:54:44 GMT
Hi Bob,
Thank you for your post!
I am not sure why you want to get an application in DMZ to be authenticated
in an internal domain.
If we try to create some kind of connection between the DMZ and the
internal domain, the DMZ will lost its value to protect your network.
It is suggested to put the application in your internal domain.
If you have any further concerns, please let me know.
Regards,
Jeff Qiu
jefffqiu@online.microsoft.com
Online Support Professional
Microsoft Corporation
This posting is provided Ħ°AS ISĦħ with no warranties, and confers no
rights.
--------------------
>Content-Class: urn:content-classes:message
>From: "Bob" <bob_olson@spgl.com>
>Sender: "Bob" <bob_olson@spgl.com>
>Subject: Servers in DMZ particpitating in internal Domain
>Date: Tue, 13 May 2003 15:48:00 -0700
>microsoft.public.win2000.security
>
>Hello;
>
>What is the best practice for having servers in the DMZ
>that have applications that need to authenticate against
>an internal Domain?
>
>There is no domain controller in the DMZ and 3 AD DC's in
>the internal domain?
>
>Should the servers in the DMZ participate in the internal
>Domain or should another Forest or Domain be setup in the
>DMZ?
>
>Thank you;
>
>Bob
>
- Next message: Henrik Andersson: "Re: Kerberos logon failure - Windows Server 2003 RTM"
- Previous message: David Francis: "Windows Sharing Problem"
- In reply to: Bob: "Servers in DMZ particpitating in internal Domain"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
