Tuesday, September 29, 2015

iis 7 - Active Directory + IIS + SQL + ASP.NET

I have sent the following question to stackoverflow website





I have installed Windows server 2008 r2 on a virtual machine, Can I
install Active directory with domain controller + IIS + SQL server on
the same machine? I want to make web application and this web
application will authenticate users from Active Directory, the web
application should be published on the server IIS and the users should
access it remotely from their home using domain name of my machine,
Someone tell me that its very wrong to have IIS and Active directory
on the same machine





I got the following Answer




You can't use ActiveDirectory over the internet. At least not without
something like a VPN as a middle man. Their home computers will not be
joined to the domain, so there is no pass-through authentication.



Yes, it's a bad idea to put AD on the web server. Why is too complex
to get into in an answer here. Suffice it to say that even if you did
do this, it's probably would not work the way you are thinking it

should.



It's not impossible to do this. For instance, many of the Microsoft
"Small Businesss" products put IIS, AD, and SQL Server on the same
server. But, you kind of have to know what you're doing to configure
it securely.




Then I add the following comment





Thanks for ur reply.so what you think about the best way to do this as
I didn't do anything like that before should I install active
directory on a machine and IIS on another machine ? and what about SQL
should I add it to the same server of active directory ? I didn't
mentioned also that it will be Microsoft dynamics server that will
access some information about work and i have to read data from axapta
also ? also what is VPN and how can I use it to let users access my
web application anywhere ? Sorry for my long questions and thanks in
advance





so please if anyone can help I will be thankful

No comments:

Post a Comment

linux - How to SSH to ec2 instance in VPC private subnet via NAT server

I have created a VPC in aws with a public subnet and a private subnet. The private subnet does not have direct access to external network. S...