I run a SBS 2008 network now, which does everything, as you know. I am migrating to 3 Server 2008 R2 machines with more robust Exchange and Sharepoint 2010. I do not use a DMZ, etc.
My users now navigate to my Remote Web Workplace using a web browser, which has a SSL certificate and is reached through pointers on another public web server. They then log in using their AD account. Then they go to Sharepoint which is extended with a remote address- and have to authenticate again using their AD account.
This is sort of how it came out of the box. My question is, what should I change with the new setup to increase security?
My Sharepoint server will also be running SQL 2008 and WSUS and also my Antivirus solution. Would I set this all up as default in my internal network then extend the companyweb site to an external address? Users would then navigate through a web browser and be hitting the outside of my server, which would be logged in using their AD account.
Any better or easier solutions?
All users that need access to the sharepoint site will have AD account and company email accounts. I will also not be broadcasting the remote address- I just need the access so users can download forms from sharepoint from anywhere they want.
Any advice?
"Sadly most places want the Porche fastness and reliablity, but only pay for a used 74 pinto, then they are "Shocked" that it wont run, and blame the IT guy"
