authentication between servers over the internet?

Discussion in 'Server Security' started by Sean G., Sep 9, 2004.

  Sean G.

    Sean G. Guest


    I have two servers at separate locations--both in the same domain, one a
    domain controller.

    What connection do I need for someone logging in to server A to be
    authenticated by domain controller B? Can this be done over the internet,
    or do I need a WAN-type connection (VNC, PPTP, VPN) ?


    Sean G.
    Sean G., Sep 9, 2004
  Miha Pihler

    Miha Pihler Guest

    Hi Sean,

    While you could do authentication over internet, this is not recommended.
    You would put your network and data between one office and the other at

    Best thing you can do is use VPN between the offices (either PPTP or L2TP).

    Here are some aditional information about VPNs.

    Remote access/VPN server role: Configuring a remote access/VPN server

    Miha Pihler, Sep 9, 2004
  Sean G.

    Sean G. Guest

    Sean G., Sep 9, 2004
  Miha Pihler

    Miha Pihler Guest

    Hi Sean,

    If he was my boss I would give him a paper to sign where he takes over all
    responsibilities. After all it was his idea. :)

    Seriously, if you go unprotected over internet you are putting security of
    your network to high risk. It is quite easy for person with enough knowledge
    to sniff out e.g. password hashes that are send between servers, not to
    mention all other data (e.g. work related documents, ...)

    Miha Pihler, Sep 9, 2004
  Robert Moir

    Robert Moir Guest

    Your boss is an idiot if he thinks that spending all your time fighting
    hackers (which is the ultimate result of his approach) is simpler than
    setting up a VPN.
    Robert Moir, Sep 11, 2004
  6. Not to mention a lot of ISP's seem to be filtering file and print
    sharing/netbios ports over their routers which is fine with me. --- Steve
    Steven Umbach, Sep 12, 2004
