is it better to put my Active Directory in DMZ!!
hope someone reply as soon as possible
yachile
0
Newbie Poster
Recommended Answers
Jump to PostIs it better than what..not putting it in a DMZ? Can you clarify what you are trying to design?
You can establish an AD instance in a DMZ and/or just have member servers participate in the DMZ but there are extra security precautions that should be considered.
Generally, if at …
All 3 Replies
JorgeM
958
Problem Solver
Team Colleague
Featured Poster
Is it better than what..not putting it in a DMZ? Can you clarify what you are trying to design?
You can establish an AD instance in a DMZ and/or just have member servers participate in the DMZ but there are extra security precautions that should be considered.
Generally, if at all possible, your servers in the DMZ are not AD joined, but again, it all depends on the goals and objectives.
Reverend Jim
4,780
Hi, I'm Jim, one of DaniWeb's moderators.
Moderator
Featured Poster
Would you put Federation outposts in the Neutral Zone? My understanding of a DMZ is that's where you put stuff you are willing to expose to those outside your secure area. In that case my response would be NO.
cguan_77
8
Nearly a Posting Virtuoso
active directort in DMZ, wow...it's a suicide..i think so..
AD should be in the protected network...
if you want AD in DMZ use LDAP instead...
Be a part of the DaniWeb community
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.