Has anyone played with using ADAM as an authentication means for published apps? Here's what I would like to see in place for our environment:
- A replicated ADAM authentication database with an scheduled automated import of AD users - Manually created groups for users outwith AD - Application authentication incorporating AD and external groups - The facility to manage users/groups using a web interface
I would like to avoid the need to access local users/groups for account management as our ISA is in the restricted DMZ.
Any help would be very much appreciated.
The ISA FAQ is still quoting late summer for the official release of 2006, anyone know when MS thinks the end of summer is?
many thanks. As always your articles are articulate and informative. There is a "perception" within our organisation that domain membership is not the best practise (not the first you have heard this eh?), this should help me win over a few of the security people.
If they have some intelligent feedback on this, it would be great if you could share it here or in the Coffee Shop forum. If they have some valid reasons for not making the ISA firewall a domain member (other than the superstitions that we have already debunked), then I'd like to take them into consideration and make them part of the article as an update.