I have been tasked with using our corporate SA4500's to access another network domain which has been setup. The SA's reside on the corporate network and are used primarily for accessing the corporate resources. The new domain has been segragated off with there own AD etc and we would like to utilise the corporate SA's instead of purchasing another one for what is likely to be very limited traffic.
I know we can configure the SA to do an LDAP query against the new domain, which will entail the opening of the fireall for port 389 and a route will need to be put in place between the networks. My question is, does anyone know of any best practises for this setup or does anyone know/see any potential risks/issues with this?
Any feedback will be gratefully recieved as I'm a bit doubtful about how this is going to work and worried about causing a potenial security risk.