From: The Netherlands
I am currently looking for a solution to get AD authentication for webservers that reside in the DMZ. These servers will stay standalone servers.
The company only wants users to authenticate first before they can get to resources or information that resides on the webservers in the dmz. Making these servers a member of AD is no solution, because the internal firewall between intranet and dmz will look like "swiss cheese".
What i am thinking of is to put a couple of standalone unihomed (isa servers may not be connected to the internet directly, company policy) isa 2006 servers in the dmz and let them do AD authentication with webpublishing.
Anyone any experience with this setup?
We are also looking at ADFS, but we are not to happy with that product.