I'm about to publish a certain servers available through port 443 (SSL) only therefore I need to use Windows Server 2008 Std. x64 TSG service, but now in this case what is the best practice for deploying this infrastructure ?
Do i need to join the TSG into the domain ?
Should I need to open LDAP port 389 from DMZ into my local network --> security hole ?
Any help and suggestion would be greatly appreciated.