|
Posted by Romualdt on December 20, 2007, 1:15 pm
Please log in for more thread options
Thanks for all the responses. Based on the suggested alternate solutions I
am gathering that my gut feeling that this was not the best idea was
correct. I had thought about both the seperate domian and ADFS but there
are other commplications with both of those in our situation.
After thinking about it yesterday I also came to the realization that the
solution would not fix the problem. We currently add the accounts as
needed manually after a new account request. The issue that the develpoer
was trying to solve, after talking to him more, was the fact the the
passwords for the accounts were not in sysnc accross thier domain, our
domain, and the application. So he wanted to give them the ability to self
manage via the application not taking into account that we have no control
over their side of things. So iam going to suggest the he incorporate AD
authentication into his app and let the admin side of thing continue to add
the accounts as the request com in.
Thanks
> One of my developers purposed something to me that I feel is inheritly
> wrong....
>
> We have an application that we publish vis citrix that an outside company
> logs into and manages thier work orders/and inventory. What the developer
> would like is to give that outside company the ability to create AD user
> accounts as they need them via that application.
>
> Does that seem wrong.....?
| 
XML Sitemap