ACS with Windows active directory through PIX

Unanswered Question
Mar 22nd, 2006
User Badges:


What would be required to have an ACS server in a DMZ talk to the active directory domain that is on the outside of the fw.

ACS-----(dmz)PIX(outside)---AD Domain

One department owns the DMZ and wants the ACS server to be in the DMZ and the other dept owns the outside network where all the servers and domains are.

Any help would be greatly appreciated.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Anonymous (not verified) Tue, 03/28/2006 - 09:38
User Badges:

I would recommend a copy of the active directory users and groups to be placed inside the network where ACS server is present. This would further speeden up the authentication process. Still why do they need this AD domain on the outside network?.

patrick.tuttle@... Tue, 03/28/2006 - 16:47
User Badges:

Thanks for the reply,

The admin responsible for the DMZ wants the benefits of authentication of the users on the domain that exists on the outside of the FW.

The copy is a good idea, except users are added and delteted frequently.



This Discussion