Sign in
Microsoft.com
 
SharePoint Products TechCenter
 
 
 
SharePoint Products TechCenter > SharePoint Products and Technologies Forums > SharePoint - Collaboration > How does ECTS work for remote employees and external users - Partners and Customers?
Ask a questionAsk a question
Search Forums:
 

QuestionHow does ECTS work for remote employees and external users - Partners and Customers?

  • Thursday, November 20, 2008 7:18 PMBrij28 Users MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     
    Sign In to Vote
    0
    Sign In to Vote
    Many people have installed and uninstalled ECTS multiple times before implementing ECTS successfully in their environment. I tried that on my single server installation few months back but I did not explore it much. I haven't tried installing and configuring it for our new SharePoint farm (multi-server farm), which we are going to deploy on Windows Server 2008 but we are looking for some generic Extranet Solution, which can help accessing SharePoint over internet to remote employees with their accounts in AD (NTLM) in intranet as well as other external users such as partners and customers with their accounts in ADAM (LDAP) in DMZ.

    Is it possible to allow access to SharePoint over internet to remote employees with their authetication against AD (NTLM) in intranet and to partners and customers with their authentication against ADAM (LDAP with FBA) in DMZ? To visualize this scenario, here is what we want,

    Active Directory should be in Intranet
    All SharePoint (MOSS 2007) servers including Database Server should be in intranet
    ADAM should be in DMZ
    ISA Server 2006 with web publishing rules should be in DMZ

    Local Employee > Intranet (http://sharepoint.domain.com) > AD  (NTLM) > Access to SharePoint
    Remote Employee > Internet (https://websp.domain.com) > ISA Server 2006 > AD (NTLM) > Access to SharePoint
    Partner or Customer > Internet (https://extranet.domain.com) > ISA Server 2006 > ADAM (FBA with LDAP) > Access to SharePoint

    We will have all internal user (Employees local or remote) accounts in Active Directory in intranet and all external user (partners or customers) accounts in ADAM LDAP repository.

    What is the best possible way of allowing access to SharePoint to remote employees, partners and customers over internet with above stated servers, tools and technologies?

    How good is ADAM to achieve this?

    I would truly appreciate your comments.

    Thanks
    -Brij



     

All Replies

  • Tuesday, June 30, 2009 6:27 PMbpdiv Users MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     
    Sign In to Vote
    0
    Sign In to Vote
    Hi Brij,

    If you are still looking for a solution might I suggest you have a look at Epok, Inc.'s product that is designed for extending SharePoint to extranet users.

    http://www.epok.net

    Thanks,
    -bpdiv
     
  • Monday, July 13, 2009 12:40 PMManishrao Patil Users MedalsUsers MedalsUsers MedalsUsers MedalsUsers Medals
     
    Sign In to Vote
    0
    Sign In to Vote
    Hi,

    I think for the local employees you go with AD and windows authentication whereas for external users (clients and partners) use Forms based Authentication (FBA). In this case only thing you need to do is extend the existing webapplication (above stated one) and configure it for FBA and do the url mapping (alternate urls for external users).

    AD is good for all purposes but if you face problems for non AD users and feel its tremendous work to be done then switch to FBA.
    Manish Patil http://patilmanishrao.wordpress.com Posting is provided "AS IS" with no warranties, and confers no rights.