we have a UCS master in private network and would like to expose LDAP service to public network; the main reason is to enable user authentication on public servers against UCS. What would be the recommended way to do that?
we are considering this setup:
- DC slave with 2 NICs
- one NIC connected to public net, but allow access from trusted IPs only; this will allow other public servers to connect to LDAP on DC slave
- one NIC connected to private net so that it can talk to DC master
Would this be a reasonable way to do that?