I am new to networking and ISA server and I have the following:
1.I have customer company has 3 sites A, B and C. 2.I want to build local domain in Site-A (Main-Office) and additional domain controllers one in site-B and one in site-C. 3.Build VPN site to site between all sites mesh topology using ISA server 2006 standard edition.
1.In case if selecting to make ISA servers to be domain member no problem with site-A, but how to setup addition domain in site-B before ISA – which will be member in that domain and in the same time ISA server will be used to have connectivity between site-A and site-B through VPN ?? Which order I have to use to install additional DC in site-B and in the same time make ISA-B domain member??? 2.Away of that scenario if I have local domain in site-A behind ISA server and want to install additional DC in site-B without having VPN connection, does it need to publish protocols through ISA-A ? If yes, which protocols? Is that secure?
Not sure i am following you. If you are talking about intersites, after connecting your hardwares, you have to do a trust relationship in Active Directory. The type of the trust will depend on what you want to do, will also depend on the network connectivity (DLS, cable, T1...etc). Once the trust relation is established, it will be easier to determine your needs with ISA. I hope i answered your question. You can also use ADLDS for this type of configuration but you won't have the same full benefits compared to Active Directory Services.
My question not about intersites, but in URL I refereed to it is recommended to install ISA as domain member, so I have no VPN hardware and use ADSL router (doesn't support VPN S2S), so after I install DC in site-A and ISA-A, now I want to install site-B, what to start with ??? ISA-B or additional domain controller in site-B?? if I start with ISA-B that will means it is not domain member, if I said I will start with Site-B additional domain controller, how it will connect to PDC in site-A while I did not established VPN connection cause no ISA server in site-B till that second !!!
From: Amazon, Brazil
you´ve three options:
1- Install the DC B on the site A before move the server. 2- Install ISA, create VPN, install DC B then join ISA to domain. 3- Install ISA, create VPN, install DC B, remove ISA, join ISA machine to domain then instal ISA back to machine.
There´s no problem to join ISA machine to domain after ISA firewall is installed.