UCS as a WAN LDAP provider

I am trying to autheticate users via internet to a UCS server , but cannot find a way for this to work, eventhough I have
added as a DNS server the published UCS server. Endpoint workstations cannot be added to the domain. Any ideas_