AD authentication from DMZ to Inside network
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-09-2008
08:49 AM
- last edited on
03-25-2019
05:41 PM
by
ciscomoderator
We have an unusual case that we need to authenticate a machine in a dmz to an internal AD server. Has anybody done this and know how to do this? We think that when the machine does a lookup for the domain, the internal address is returned, not the translated address.
- Labels:
-
NGFW Firewalls
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-09-2008 03:07 PM
For AD auth from DMZ host to inside there are few things you need to allow if fw if AD is in inside interface. Also depending if you are natting from DMZ to inside or no_nat eiteher or you still need to permit the required AD ports.
see this article.
http://technet.microsoft.com/en-us/library/bb727063.aspx
Rgds
Jorge
