The IIS box doesn't have to run AD, just be a member of the domain.
Never place your AD near the edge if you can ever avoid it.

* Jim Harrison
MCP(NT4, 2K), A+, Network+
Services Platform Group
*(425) 705-7275

-----Original Message-----
From: Happy Harry [mailto:happy_harry200hotmail.com]
Sent: Tuesday, December 18, 2001 02:19
To: focus-mssecurityfocus.com
Subject: Active Directory+IIS

Hi There

I am looking for some information on running Active directory on an
Internet
facing IIS box! The IIS box is sat behind Firewall 1, but the
developers
wish to use Active directory to allow features on the web site.

Is this wise?

As the Firewall administrator I am seeing all the things you would
expect
from a W2K domain controller (DNS etc)...

The set up is not currently connected to a live network so no production

equipment is exposed but the opportunity for defacement etc is something
we
would rather avoid!!

Many thanks.....

_________________________________________________________________
Get your FREE download of MSN Explorer at
http://explorer.msn.com/intl.asp.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]