Re: Active Directory in DMZ

From: "Thomas W Shinder" <tshinder@xxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Date: Thu, 8 Apr 2004 22:45:32 -0500
Hi Stuart,
 
Check out the Branch office kit over at www.isaserver.org, it has the
most good info on this type of config, although you'll find some good
info on the back to back config in the EDU kit over there too. 
 
HTH,
Tom
 
 
Thomas W Shinder
www.isaserver.org/shinder
ISA 2004 Beta - Get it now!
http://www.microsoft.com/isaserver/beta/default.asp
<http://www.microsoft.com/isaserver/beta/default.asp> 
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp

 

        -----Original Message-----
        From: Peter Pape [mailto:papexpjboi@xxxxxxx] 
        Sent: Thursday, April 08, 2004 9:35 PM
        To: [ISAserver.org Discussion List]
        Subject: [isalist] Re: Active Directory in DMZ
        
        
        http://www.ISAserver.org
        
        Hi Stu,
         
        I tried to achieve a similar configuration, but couldn't get it
to work.  I finally gave up after reading the following KB article.  I
concluded it wasn't possible, but maybe someone's found a way.  
         
        
http://support.microsoft.com/default.aspx?scid=kb;en-us;329807&Product=I
SAS
         
        Peter

                ----- Original Message ----- 
                From: Stuart Pittwood
<mailto:SPittwood@xxxxxxxxxxxxxxxxx>  
                To: [ISAserver.org Discussion List]
<mailto:isalist@xxxxxxxxxxxxx>  
                Sent: Thursday, April 08, 2004 1:36 AM
                Subject: [isalist] Active Directory in DMZ

                http://www.ISAserver.org
                
                Hi all,
                 
                I have a back to back dmz (both ISA server 2000). with a
web server in between.
                 
                I'm would like to be able to authenticate users to
certain pages on the web sevrver (IIS) based on their active directory
account which only exists on the internal lan.  What would be the best
way to achieve this?
                 
                At the moment, the web server and the exterior firewall
know nothing of the active directory domain.
                 
                Any advice/insights/input much appreciated.
                 
                Stu
                ------------------------------------------------------
                List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
                ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
                ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
                ------------------------------------------------------
                Other Internet Software Marketing Sites:
                Leading Network Software Directory:
http://www.serverfiles.com
                No.1 Exchange Server Resource Site:
http://www.msexchange.org
                Windows Security Resource Site:
http://www.windowsecurity.com/
                Network Security Library: http://www.secinf.net/
                Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
                ------------------------------------------------------
                You are currently subscribed to this ISAserver.org
Discussion List as: papexpjboi@xxxxxxx
                To unsubscribe send a blank email to
$subst('Email.Unsub') 

                                A full list of partners in Amery-Parkes
is available for inspection at all of our offices.

                                

                                Information contained in this e-mail is
intended for the use of the addressee only, and is confidential and may
be the subject of Legal Professional Privilege. Any dissemination,
distribution, copying or use this communication without prior permission
of the addressee is strictly prohibited.

                                

                                The contents of an attachment to this
email may contain software viruses which could damage your own computer
system. Whilst Amery-Parkes has taken every reasonable precaution to
minimise this risk, we do not accept liability for any damage which you
sustain as a result of software viruses. You should carry out your own
virus checks before opening any attachment to this email.

                                Regulated by The Law Society

        ------------------------------------------------------
        List Archives:
http://www.webelists.com/cgi/lyris.pl?enter=isalist
        ISA Server Newsletter:
http://www.isaserver.org/pages/newsletter.asp
        ISA Server FAQ:
http://www.isaserver.org/pages/larticle.asp?type=FAQ
        ------------------------------------------------------
        Other Internet Software Marketing Sites:
        Leading Network Software Directory: http://www.serverfiles.com
        No.1 Exchange Server Resource Site: http://www.msexchange.org
        Windows Security Resource Site: http://www.windowsecurity.com/
        Network Security Library: http://www.secinf.net/
        Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
        ------------------------------------------------------
        You are currently subscribed to this ISAserver.org Discussion
List as: tshinder@xxxxxxxxxxxxxxxxxx
        To unsubscribe send a blank email to
$subst('Email.Unsub')
Re: Active Directory in DMZ

Other related posts:
