Security Basics
Windows Active Directory Domains Jul 08 2014 08:48PM
joeb1kenobe gmail com (6 replies)
RE: Windows Active Directory Domains Jul 09 2014 09:27PM
Keith Kooyman (kckooyman tstc edu)
RE: Windows Active Directory Domains Jul 09 2014 02:29PM
Jim B (scififans hotmail com)
Re: Windows Active Directory Domains Jul 09 2014 02:21PM
Kurt Buff (kurt buff gmail com) (1 replies)
RE: Windows Active Directory Domains Jul 14 2014 02:12PM
Mikhail A. Utin (mutin commonwealthcare org)
RE: Windows Active Directory Domains Jul 09 2014 02:18PM
Michael Sturtz (Michael Sturtz PACCAR com)
RE: Windows Active Directory Domains Jul 09 2014 02:02PM
Chris Wessells (cwessells metasource com)
Re: Windows Active Directory Domains Jul 09 2014 01:55PM
Will Boling (will willboling com) (1 replies)
RE: Windows Active Directory Domains Jul 09 2014 04:56PM
Ocala Website Designs LLC (webmaster ocaladesigns com)
Tell you the truth, if the HR department has HIPPA information, or
information that is very sensitive, they should hire someone that does know
what they are doing. No offense, but a security breach is a bad way to find
out you failed at securing your HR data. I agree, keep it simple, use a
single domain, leverage NTFS permissions and vlans properly.

Thank you,

Tommy Thomas, MCP, Network+, Security+, C|EH, MCSE
Network Systems Administrator -::- Webmaster
Public Affairs Specialist - :: - Photojournalist
Ocala Website Designs LLC
www.OcalaWebsiteDesigns.com
President - Ocala Outreach Foundation Inc.
www.OcalaOutreach.com

-----Original Message-----
From: listbounce (at) securityfocus (dot) com [email concealed] [mailto:listbounce (at) securityfocus (dot) com [email concealed]] On
Behalf Of Will Boling
Sent: Wednesday, July 9, 2014 9:56 AM
To: joeb1kenobe (at) gmail (dot) com [email concealed]
Cc: security-basics (at) securityfocus (dot) com [email concealed]
Subject: Re: Windows Active Directory Domains

Joe,

I see very, very little benefit in separating the domains. Honestly, it
sounds like an excuse to not setup share permissions and other things
correctly within a shared domain. From a management perspective, I could
see this being a huge pain. I would recommend having them consolidate the
domain into one and having someone help them with permissions and object
security within the domain. Could they not utilize ACLs and VLANs on
switches to provide the level of security they're trying to use the firewall
for?

Thank you,
Will

On Jul 8, 2014, at 4:48 PM, joeb1kenobe (at) gmail (dot) com [email concealed] wrote:

> I have a scenario where I am trying to evaluate the security benefits of
an Active Directory domain structure.
>
> We will call the company XYX Inc. They have an AD Forest/Domain for
general users. They also have a separate AD Forest/Domain for their HR Users
that is behind a firewall.
>
> The claim is that the separate forests with a one way trust provides the
necessary security to protect the HR Information.
>
> My thinking is that having the users/servers in the same forest would
provide additional benefit of ease of use for the technical team. Using the
already existing firewall, separate the servers behind the firewall for the
needed protection of HR files.
>
> Before I make a recommendation of one way or the other, I wanted to elicit
the ideas of others who may have seen similar situations.
>
> Thanks
>
> Joe Brown
>
> ----------------------------------------------------------------------
> -- Securing Apache Web Server with thawte Digital Certificate In this
> guide we examine the importance of Apache-SSL and who needs an SSL
certificate. We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be4
> 42f727d1
> ----------------------------------------------------------------------
> --
>

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate In this guide we
examine the importance of Apache-SSL and who needs an SSL certificate. We
look at how SSL works, how it benefits your company and how your customers
can tell if a site is secure. You will find out how to test, purchase,
install and use a thawte Digital Certificate on your Apache web server.
Throughout, best practices for set-up are highlighted to help you ensure
efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727
d1
------------------------------------------------------------------------

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus