Home > Ask the Security Experts > Identity Management and Access Control Questions & Answers > What tools can limit users' acess to applications and network resources?
Ask The Security Expert: Questions & Answers
EMAIL THIS

What tools can limit users' acess to applications and network resources?

Joel Dubin, past SearchSecurity.com expert EXPERT RESPONSE FROM: Joel Dubin, past SearchSecurity.com expert

Pose a Question
Other Security Categories
Meet all Security Experts
Become an Expert for this site


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


>
QUESTION POSED ON: 21 October 2006
I have SharePoint sites that are being accessed by the public (vendors, consultants, etc). They require an account in Active Directory for authentication. Can you suggest how to set the accounts so that on-site users cannot log in to the network?

>
It almost sounds like an SSL VPN would do the trick. An SSL VPN creates a secure tunnel over an HTTP connection. Unlike an IPsec VPN, which is a hardware product configured on a specialized router, an SSL VPN is a Web-based application.

Another key difference between the two VPNs is that an IPsec VPN connects a client, or workstation, to a network. An SSL VPN connects an individual user to an application. The SSL VPN can be finely tuned to only allow outside vendors and consultants access to specific applications, rather than the whole network.

Two well-known vendors of SSL VPNs are Juniper Networks Inc. and Aventail Corp.

Alternatively, you could set the group policy objects (GPO) within Active Directory for outsiders logging in. GPOs can be set to limit specific users' access to network resources, while allowing access to specific files containing the applications they need.

Either approach -- the SSL VPN or setting the GPOs -- can provide you limited access requirements.

More information:

  • Read a book chapter on VPNs and encryption.
  • Learn the costs of maintaining a VPN.

    		•

    BROWSE BY TAG
    Identity Management and Access Control,   Secure VPN Setup and Configuration,   Enterprise Network Security,   IPsec VPN Security,   SSL and TLS VPN Security,   Expert Archive: Identity Management and Access Control,   VIEW ALL TAGS

    Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



    RELATED CONTENT
    Identity Management and Access Control
    Is Identity Management as a Service (IDaaS) a good idea?
    How to log in to multiple servers with federated single sign-on (SSO)
    How to confirm the receipt of an email with security protocols
    Learn about enterprise strategy for server virtualization single sign-on
    Employee information security awareness training for new IAM systems
    Can you combine RFID tag technology with GPS to track stolen goods?
    Is there a free enterprise-caliber password-management tool?
    Cryptosystem attacks that do not involve obtaining the decryption key
    Can any firm or organization get a digital signature certificate?
    Should the CTO have domain administrator access?

    IPsec VPN Security
    Best Remote Access Products
    How to set up a split-tunnel VPN in Windows Vista
    What is the difference between a VPN and remote control?
    A short enterprise VPN deployment guide
    From the ground up: Creating secure WLANs
    Can S/MIME, XML and IPsec operate in one protocol layer?
    How to create a secure network through a shared Internet connection
    What firewall controls should be placed on the VPN?
    VoIP tools, attacks could increase threat
    Best practices for processing financial data through remote servers
    IPsec VPN Security Research

    SSL and TLS VPN Security
    Expert calls SSL protocol vulnerability a non issue
    How SSL-encrypted Web connections are intercepted
    Best Remote Access Products
    How to set up a split-tunnel VPN in Windows Vista
    Securing the intranet with remote access VPN security
    A short enterprise VPN deployment guide
    Creating an SSL connection between servers
    Can S/MIME, XML and IPsec operate in one protocol layer?
    Can secure USB devices prevent man-in-the middle attacks
    How to secure SSL following new man-in-the-middle SSL attacks

    RELATED GLOSSARY TERMS
    Terms from Whatis.com − the technology online dictionary
    Internet Key Exchange  (SearchSecurity.com)
    network encryption  (SearchSecurity.com)

    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary



    Search and Browse the Expert Answer Center
    Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
    Browse our Expert Advice



    Find Security Solutions for Your Business
    TechTarget Security Media
    Information Security View this month\\'s issue and subscribe today.
    Information Security Decisions Apply online for free conference admission.
    		SearchSecurity.com
    HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
    SEARCH :     Site Index Powered by: Search Powered by Google

    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Site Map




    All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts