locked
Running ATA with a one-way trust RRS feed

  • Question

  • I'd like to deploy ATA in the following scenario.  Is this supported/workable?

    • Domain B trusts domain A.  Domain A does not trust domain B.  Domains are in separate forests.
    • Run ATA Center in Domain A.
    • Deploy Lightweight Gateways to domain controllers in B  (certificate used on Center will be trusted by DCs)
    • Open LDAP/S from Center to domain controllers
    • Open HTTPS from domain controllers to Center

    Advanced Threat Analytics version 1.9 ATA Architecture

    Monday, November 26, 2018 2:48 PM

All replies

  • ATA Does not support a multi forest scenario.

    You need AATP for that.

    Monday, November 26, 2018 3:40 PM
  • Leaving the forest issue aside,  do I have the ports right?  There will be a firewall between the Center and the domain controllers running the lightweight gateway.

    • Open LDAP/S from Center to domain controllers
    • Open HTTPS from domain controllers to Center

    Wednesday, December 5, 2018 1:48 PM