Forum Discussion
Large-scale VDI deployment management with Active Directory and domains
Hello I am working for a start up and deployed RDS persitent VDI for just one enterprise which works perfectly. Now office wants to offer Persitent VDI to multiple company. I don't have muc...
Multiple ou's can be done... 🙂 ... but hardening them, to make sure users,groups arent visible when using ldap 😛 that's another piece of the pie 🙂 ..
Yes we have it all secured but it took about 10 years to be an expert in it
Yes we have it all secured but it took about 10 years to be an expert in it
This what i am currently trying to fix. Will you recommend i go with multiple OU per enterprise rather than Multiple domains?
Then will have to secure an expert for Hardening so they aren't visible.
Then will have to secure an expert for Hardening so they aren't visible.
We decided to use seperate ou's.. for each customer a dedicated locked down gpo with their users/computers and groups in it.... of course the best way and most secure way is what harm proposed earlier...
Also please be careful... as listing sessions remotely from a storage server can also easily be done 🙂- Thank you so much. I appreciate your support and feedback.
- The best thing would be to create a network separated Active Directory Forest per customer, you're making things very complex by trying to manage it in one Forest. And like I said, what if a customer wants to leave? It's a better exit strategy for your customers to have things separated IMHO
- Thank you so much. I appreciate your support and feedback
