Re: Is it possible to secure replication?
From: Steven L Umbach (n9rou_at_n0-spam-for-me-comcast.net)
Date: 12/09/04
- Next message: Amir Marathonian: "Secure Channel Password"
- Previous message: Steven L Umbach: "Re: How do I block access to the Internet?"
- In reply to: Jacques Koorts: "Is it possible to secure replication?"
- Next in thread: Steve Clark [MSFT]: "Re: Is it possible to secure replication?"
- Reply: Steve Clark [MSFT]: "Re: Is it possible to secure replication?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 09 Dec 2004 00:15:45 GMT
Kerberos secures replication traffic for Active Directory including AD
integreated dns zones and is very secure. You can also use Domain Security
Policy to change kerberos policies as far as ticket lifetimes if you feel
the need to secure it further at the expense of additional bandwidth and
load on the domain controllers. Installing multiple nics on domain
controllers is something to be avoided if possible anyhow as they end up
being master browsers and other configuration headaches can occur. ---
Steve
http://www.windowsitlibrary.com/Content/617/06/toc.html -- more info on
kereberos.
"Jacques Koorts" <jkoorts@gmail.com> wrote in message
news:10ren4v8prael4e@corp.supernews.com...
>I have this idea, you add 2 network cards to each DC. One each using it to
>connect to network, and the other to connect to each other. This linkl
>between them you then use for replication making it very secured. Can this
>be done and how?
>
- Next message: Amir Marathonian: "Secure Channel Password"
- Previous message: Steven L Umbach: "Re: How do I block access to the Internet?"
- In reply to: Jacques Koorts: "Is it possible to secure replication?"
- Next in thread: Steve Clark [MSFT]: "Re: Is it possible to secure replication?"
- Reply: Steve Clark [MSFT]: "Re: Is it possible to secure replication?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
