Hi All,
Just now we have aquire intranet protal which is hosted in another datacenter and with another vendor. As per the vendor in order to do the password synchronization we have to do the LDAPs integration with ACtive Directory, which means we have to publish Active Directory over internet.
I have thought to put RODC in DMZ network and will allow the vendor to do the LDAPs integration with RODC in order to do the password synchronization but i do not get the answers for the below:
1. As per MS document if you are going to deploy RODC in DMZ then IPSEC should be there (Is it necessary or i can skip this)
2. All of my users are sitting in corporate network and are not authenticating with RODC, in this case how to achieve the single sign on when users will access the intranet portal hosted on internet.
3. How to enable LDAPs on my RODC server
4. in my scenario do i have to do some thing on my write able domain controller
5. In my scenario do i also have to enable LDAPs on my write able domain controllers
6. Any step by step article which shows show to enable ldaps on rodc
7. As per MS article for RODC in DMZ ports needs to be opened from RODC to write able and vise versa is it necessary if yes then why.
8. If i am not using IPSEC for RODC communication to wrdc then still will it be secure.
9. if point number 8 answer is no then is there any step by step article which let me know to enable ipsec between rodc and wrdc
Appreciate your help.
10. I do not want to install DNS on RODC is it correct, can i do this, because there is no need to join dmz servers to domain and there is no requirements to resolve names in the dmz network servers
If answer is helpful, please hit the green arrow on the left, or mark as answer. Salahuddin | Blogs:http://salahuddinkhatri.wordpress.com | MCITP Microsoft Lync