From: Boyertown, PA, USA
New to the VPN game here so please bear with my inexperience - I have a few questions. Just doing research at this point but looking for some guidance.
Small company (100 users) using ISA Server. During initial research and setup of the ISA Server, I saw two trains of thought on the one forest vs keeping ISA in its own forest and for security considerations, went with the separate domain with a one-way trust.
ISA Server is its own Win2K forest running AD with a one-way trust with the primary company domain. The primary domain is in mixed mode currently with a Win2K DC. New project assigned today to research using VPN to allow users to connect to the primary domain remotely.
I want to use ISA server to have users connect to that server to gain access to the primary domain. What issues do you foresee due to the one-way trust issue? Will company users have to logon first to the ISA server domain (where they do not currently have accounts, the accounts on the ISA domain are for clients accessing our ftp site) before accessing the primary domain?
If anyone has any suggestions or has seen this same scenario before, please let me know. Thanks.