Focus on Microsoft
Setting up IPSEC with servers in and out of a domain Nov 19 2007 06:11PM
Marty (skiandcave gmail com) (2 replies)
RE: Setting up IPSEC with servers in and out of a domain Nov 20 2007 05:32AM
Serge Vondandamo (serge vondandamo wanadoo fr)
RE: Setting up IPSEC with servers in and out of a domain Nov 20 2007 12:20AM
Laura Robinson (geekwench hotmail com)
Sure. Use public key (certificate)-based IPsec. Depending on the needs of
the environment, you can either purchase certificates, or you can implement
a PKI. As far as who's had success using such an infrastructure, there are
numerous companies that have, not the least of which is Microsoft, which has
over 100,000 machines using such an infrastructure as part of their NAP
implementation- the machines are in and out of domains, multiple forests,
etc. Domain membership is in many ways irrelevant in a certificate-based
implementation, because it's about the certificate trust path, not the
domain trust path.

Laura

> -----Original Message-----
> From: listbounce (at) securityfocus (dot) com [email concealed]
> [mailto:listbounce (at) securityfocus (dot) com [email concealed]] On Behalf Of Marty
> Sent: Monday, November 19, 2007 1:11 PM
> To: focus-ms (at) securityfocus (dot) com [email concealed]
> Subject: Setting up IPSEC with servers in and out of a domain
>
> Greetings list,
>
> Has anyone had success with using IPSEC to encrypt traffic between a
> server in a domain and a server not in a domain? If not, are there
> any third party solutions out there that can do this?
>
> Thanks in advance,
> Marty
>
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.5.503 / Virus Database: 269.16.0/1137 - Release Date:
> 11/18/2007 5:15 PM
>

No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.5.503 / Virus Database: 269.16.0/1137 - Release Date: 11/18/2007
5:15 PM

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus