I work for a Call Center company and because the consequences from the COVID-19 pandemic we had to put most of employees to work from home.

As we don't a proper VDI infrastructure the corporation decided to hired these VDI as a service.

Now we are in a security dilema as we have to provide a external integration with our Active directory to hired company can identify and authenticate ours users.

As we don't have a AD specialist in our Windows IT team I started to look for something in the web about manners to provide a external connection to our AD without expose more than I should to a external company.

How can I do it?
Is it safe stablishe a one way trust relationship from external AD with ours?

Does anybody can share your experience related to this cenario with me?

Regards,
Marcelo