Home | News | Links | Howto's | Reviews | Faq's | About Us | Downloads | Search | Forum | Submit | Login
Datacrash Forum  


Boardwalk :: Forum List Ask your questions here General
Router
User
Posts: 1
graphgraph
 
 Sharepoint - 2006/07/19 12:03 Hello,

We are going to implement Windows Sharepoint Services.
We have already a Windows 2003 Active Directory.
The Win2k3 server with Windows Sharepoint Services will be placed in the DMZ.

Should we create a new 2003 forest for security reasons?
Is it secure when the users will be authenticaded with a forest trust?

Greetings,

Router
  | | The administrator has disabled public write access.
rob
User
Posts: 3
graphgraph
 
 Re:Sharepoint - 2006/07/20 11:33 really depends on what u want to do with ur sharepoint server. I really can't give 1 answer to the question.

A trust uses less ports and doesn't give rights automatically (it allows you to give a user in domain A right in domain B (and vice versa, depending on how u set up the trust)), but it still requires e.g. netbios (microsoft dn) ports to be opened.

Another implementation which is quite common. The sharepoint server is only reachable through vpn (vpn to the dmz where sharepoint is located). Sharepoint is just member of the domain. Here you have a double authentication, first u need to setup the vpn (using a cryptocard or certificate), then u need to logon to the sharepoint server.
This implementation would have my preference.
  | | The administrator has disabled public write access.
McM
Admin
Posts: 154
graphgraph
 
 Re:Sharepoint - 2007/04/23 13:48 I normally prefer a sub domain of the existing domain.
No difficulties with same usernames and different passwords.

In Exchange 2007 there for instance a new role (Edge Role) wich communicaties over port 25 with the Active Directory and uses ADAM. (Subset of Active Directory)
  | | The administrator has disabled public write access.
Boardwalk :: Forum List Ask your questions here General

Joomlaboard Forum Component 1.1.2 Stable
Two Shoes M-Factory