Server and Domain Isolation
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
Server and domain isolation enable you to implement network authentication based on policy rather than network topology, so that your Windows environment is dynamically segmented into more secure, isolated logical networks.
By using server and domain isolation, you can better:
Reduce the scope of network security threats
Safeguard sensitive data and intellectual property
Extend the value of existing infrastructure
Server and domain isolation builds on Internet Protocol security (IPsec) and Active Directory® Domain Services (AD°DS), which are available in Windows Vista®, Windows Server® 2008, Windows Server® 2003, Windows XP, and Windows 2000. This removes the need to make potentially disruptive changes to your network topology, existing applications, or requiring costly hardware upgrades.
The following resources can help you to effectively design, deploy, and manage server and domain isolation scenarios in your network.
Introduction to Server and Domain Isolation
This paper introduces the basic concepts of server and domain isolation, and describes common scenarios in which each can be used to improve network security.
Server Isolation with Microsoft Windows Explained
This paper provides a detailed overview of server isolation in the Microsoft Windows operating systems. It explains how server isolation protects servers and describes the benefits of deploying server isolation in your IT environment. It also provides a brief overview of how to deploy server isolation.
Domain Isolation with Microsoft Windows Explained
This paper provides a detailed overview of domain isolation in the Microsoft Windows operating systems. It explains how domain isolation protects domain member computers and describes the benefits of deploying domain isolation in your IT environment. It also provides a brief overview of how to deploy domain isolation.