Hey guys,
I just need a sanity check.
I have a IPSEC tunnel between our Sophos and an outside supplier - the Supplier needs to be able to access my AD to pull users / passwords for a shared application.
I want to restrict them to only getting to AD for those things.
So in servies I have removed ANY and replaced with LDAP, DNS, UDP, TCP and ICMP only - is that all is required for them to be able to still access AD but without full access?
** ICMP is only for monitoring / troubleshooting :-)
This thread was automatically locked due to age.
