View Complete Thread
  • Re: Security best practices and using AD for server and process identity in a public facing web a...

    Jun 01, 2011 10:43 PM|steve schofield|LINK

    Here is an article published by the AD team at MS

    http://www.microsoft.com/downloads/en/details.aspx?displaylang=en&FamilyID=c1d0fd00-bf31-4b20-95c6-279a4ce7c2b4

    "Old school" is right,  I've been using AD since w2k in a public facing environment.   AD is the foundation of which many things can help provide a consistent, secure and stable environment.  I use group policy extensively to lockdown servers with windows firewall.  The only real opening is a few management / utility servers that are trusted.   You can honestly lockdown them down hard but you still have to manage, monitor and deploy code to them.  I've managed stand-alone machines (not since w2k3 / w2k) so my perspective is a bit aged on that front, however AD provides more benefit than hassle  I probably could write a really long article on the topic of how I used, why and such. This is one of those topics near to my heart. :)  Hpoe this helps.   Any questions, contact me off list if there are other concerns.  Steve AT iislogs.com

    Steve Schofield
    Windows Server MVP - IIS
    http://iislogs.com/steveschofield
    http://www.IISLogs.com
    Log archival solution
    Install, Configure, Forget