upgrading my domain/active directory over internet.
I have a domain controller installed in a local premises. I have to make this server available over the internet that the users in other cities/countries can login to their active directory profiles(global), make any changes and log off.
The actual requirement of the department is to have the updated files always as the users will access active directory account through vpn or any other mean.
My questions are;
What are the way to take my server online other than buying a static IP from ISP with a leased line.
And what are the different ways that users can login to the active directory accounts. (one is vpn over xDSL)
Is there any other solution to this scenario?
Thanks.
The actual requirement of the department is to have the updated files always as the users will access active directory account through vpn or any other mean.
My questions are;
What are the way to take my server online other than buying a static IP from ISP with a leased line.
And what are the different ways that users can login to the active directory accounts. (one is vpn over xDSL)
Is there any other solution to this scenario?
Thanks.
0
Comments
What kind of access to what resources to your end users require?
Where will your users be? Home based? Mobile?
Will your users be using corporate devices on a corporate AD infrastructure?
Is your AD infrastructure also providing MS Exchange? What versions of AD/Exchange?
Help us understand your infrastructure a little more, exposing a domain controller to the internet requires some significant dilligence.
I thought of providing the active directory accounts over internet and let the users log in to the .dat/.man profiles. But I am not sure whether its possible or not. If possible then will that be a cheaper and reliable solution.
Users can use DSL (from their local ISP) to get connect.
Corporate devices? You mean, router and so so? No, There is not corporate devices installed yet.
No MS Exchange.
Can we make a VPN connection without having a static IP from ISP?
Questions:
1. Why do the users have individual work/excel spreadsheets embedded in their user profiles? This sounds very complex and unwieldy. What is the purpose of documents (obviously respecting your companies privacy)?
2. Why not publish the files over HTTPS using Sharepoint Services? This can also be used when the users are in the office. It also means there is no reliance on a corporate laptop/desktop or mobile device. Any PC with an internet connection and a web browser would work. Sharepoint will use AD communications and is integrated into AD. This will also provide document versioning, concurrency and backup. It also removes the roaming profile data overhead.
You _could_ implement an SSL VPN solution but lets keep this simple
Most companies just have the files on a file server and have their users VPN onto the network, authenticate to the domain, and then browse the file server for the files they need.
As for the Static IP address issue... I assume they are not paying their ISP for a small business package since they are not given a fixed IP Address. Really, if the company is talking about remote users, VPN, Domains, and such, they need to pony up for at least one fixed IP address and might as well change from consumer pricing to small business pricing. Most ISP do not garentee their service to home user packagaes. If the network goes down for a day ot two, they say "Sorry and we'll credit your account 2 days worth of service... Thank you have a good day." With a business account, they usually have some sort of service level agreement to keep your access up 99%, 99.9%, 99.99%, or the the best will promise 99.999%. Nothing worse than to have a guy somewhere like across the country and need a document for a client and your ISP drops the line for a day or so.