Messaging Gateway

 View Only

  • 1.  SMG integrate with AD

    Posted Feb 02, 2017 04:17 AM

    Hi,

    Anyone integrate SMG with AD?

    What's the recommended practise to have this configure? To allow SMG (at DMZ) to query the domain controller directly which is in the internal segment?

    Is it a good idea to setup this way?

    dmz.jpg

    I'm just now comfortable to have the SMG querying the domain controller directly.

    Please advise.



  • 2.  RE: SMG integrate with AD

    Posted Feb 02, 2017 04:22 AM

    Correction:

    I'm just NOT comfortable to have the SMG querying the domain controller directly.



  • 3.  RE: SMG integrate with AD

    Posted Feb 03, 2017 03:08 AM

    Anyone can advise please?



  • 4.  RE: SMG integrate with AD

    Posted Feb 03, 2017 08:28 AM

    Hi,

    Its depending on what you are doing. If you only activate a ldap-validation (ldapS) for the recipients ... what are your concerns?

    Just use a certain user which only has read-rigth for smtp-address and certain bases and youre done.

    Enable SMGs cache for recipients to minimize queries, size the number and time for entries in the cache.

    Regards

    Thomas



  • 5.  RE: SMG integrate with AD

    Posted Feb 05, 2017 10:24 PM

    Hi,


    Will be activating recipient validation and enable DHA.

    I'm just checking what's the best way for SMG connecting to the internal AD without compromising the security.

    Regards