{"id":1391,"date":"2011-07-12T11:55:37","date_gmt":"2011-07-12T14:55:37","guid":{"rendered":"http:\/\/www.radians.com.ar\/blog\/?p=1391"},"modified":"2011-07-12T11:55:37","modified_gmt":"2011-07-12T14:55:37","slug":"protegiendo-nuestro-active-directory-con-forefront-threat-management-gateway-2010parte-3-howto","status":"publish","type":"post","link":"https:\/\/www.radians.com.ar\/blog\/?p=1391","title":{"rendered":"Protegiendo nuestro Active Directory con Forefront Threat Management Gateway 2010&ndash;Parte 3 {HowTo}"},"content":{"rendered":"<p align=\"justify\"><font size=\"2\">Hace unas semanas escrib\u00ed una nota sobre como proteger nuestra infraestructura de Active Directory con la utilizaci\u00f3n de Forefront Threat Management Gateway 2010, hoy vamos a ver la ultima parte de esas tres notas, en donde veremos la ultima configuraci\u00f3n inicial que debemos hacer. Les paso los links de las notas anteriores:<\/font><\/p>\n<ul>\n<li>\n<div align=\"justify\"><a href=\"http:\/\/www.radians.com.ar\/blog\/?p=1360\"><font size=\"2\">Protegiendo nuestro Active Directory con Forefront Threat Management Gateway 2010\u2013Parte 1 {HowTo}<\/font><\/a><\/div>\n<\/li>\n<li>\n<div align=\"justify\"><a href=\"http:\/\/www.radians.com.ar\/blog\/?p=1365\"><font size=\"2\">Protegiendo nuestro Active Directory con Forefront Threat Management Gateway 2010\u2013Parte 2 {HowTo}<\/font><\/a><\/div>\n<\/li>\n<\/ul>\n<p align=\"justify\"><font size=\"2\">Una vez que iniciamos la consola de administraci\u00f3n, iniciara autom\u00e1ticamente el siguiente Wizard:<\/font><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/01.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"01\" border=\"0\" alt=\"01\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/01_thumb.png\" width=\"544\" height=\"409\" \/><\/a><\/p>\n<p align=\"justify\"><font size=\"2\">En nuestro caso seleccionamos Edge Firewall. Recordemos que en la primera parte de esta serie de notas describimos cual es la diferencia entre los distintos tipos de <strong>Network Template. A<\/strong> continuaci\u00f3n, el asistente nos pedir\u00e1 la informaci\u00f3n de la red LAN y seleccionar\u00e1 autom\u00e1ticamente la que se define como WAN o Internet si la topolog\u00eda seleccionada lo requiere.<\/font><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/03.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"03\" border=\"0\" alt=\"03\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/03_thumb.png\" width=\"544\" height=\"409\" \/><\/a><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/07.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"07\" border=\"0\" alt=\"07\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/07_thumb.png\" width=\"544\" height=\"409\" \/><\/a><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/08.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"08\" border=\"0\" alt=\"08\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/08_thumb.png\" width=\"544\" height=\"409\" \/><\/a><\/p>\n<p align=\"justify\"><font size=\"2\">Vemos el resumen de lo que configuramos, si esta todo bien hacemos un clic en Finish.<\/font><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/09.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"09\" border=\"0\" alt=\"09\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/09_thumb.png\" width=\"544\" height=\"470\" \/><\/a><\/p>\n<p align=\"justify\"><font size=\"2\">Lo siguiente a configurar, seg\u00fan el wizard es <strong>Configure System Settings<\/strong>, en donde podremos modificar la identificaci\u00f3n del equipo en la red y como es el sufijo en el DNS para que pueda ser ubicado por el resto de los equipos en la red.<\/font><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/10.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"10\" border=\"0\" alt=\"10\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/10_thumb.png\" width=\"544\" height=\"482\" \/><\/a><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/11.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"11\" border=\"0\" alt=\"11\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/11_thumb.png\" width=\"544\" height=\"463\" \/><\/a><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/12.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"12\" border=\"0\" alt=\"12\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/12_thumb.png\" width=\"544\" height=\"465\" \/><\/a><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/13.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"13\" border=\"0\" alt=\"13\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/13_thumb.png\" width=\"544\" height=\"469\" \/><\/a><\/p>\n<p align=\"justify\"><font size=\"2\">El ultimo paso es <strong>Define Deployment Options<\/strong>, en donde podremos seleccionar si deseamos actualizar nuestro TMG por medio de Windows Update y que servicios agregar\u00e1 a la funcionalidad del TMG 2010. Para activar estas funciones es requerido una licencia adicional, si no la posee, puede optar por dejar la de Evaluaci\u00f3n, en donde se le indica la fecha de vencimiento del per\u00edodo de prueba.<\/font><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/14.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"14\" border=\"0\" alt=\"14\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/14_thumb.png\" width=\"544\" height=\"489\" \/><\/a><\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/16.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"16\" border=\"0\" alt=\"16\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/16_thumb.png\" width=\"544\" height=\"474\" \/><\/a><\/p>\n<p align=\"justify\"><font size=\"2\">Ahora podemos habilitar la suscripcion a <em><strong>Network Inspection System (NIS)<\/strong><\/em>. El tr\u00e1fico puede ser inspeccionado para detector exploits de vulnerabilidades Microsoft. Basado en an\u00e1lisis de protocolo, NIS habilita el bloqueo de distintos tipos de ataques reduciendo al m\u00ednimo los falsos positivos. Las protecciones pueden ser actualizadas cuando sea necesario.<\/font><\/p>\n<p align=\"justify\"><font size=\"2\">Tambien podemos habilitar el filtrado de URLs. Las URLs de destino son examinadas para asegurar el cumplimiento con las pol\u00edticas corporativas y contenido maligno en el sitio de destino. Forefront TMG usa Microsoft Reputation Services para le filtrado de URLs combinando m\u00faltiples Fuentes para incrementar la cobertura de URLS y su categorizaci\u00f3n.<\/font> <\/p>\n<p><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/18.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"18\" border=\"0\" alt=\"18\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/18_thumb.png\" width=\"544\" height=\"479\" \/><\/a><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/19.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"19\" border=\"0\" alt=\"19\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/19_thumb.png\" width=\"544\" height=\"479\" \/><\/a><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/20.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"20\" border=\"0\" alt=\"20\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/20_thumb.png\" width=\"544\" height=\"476\" \/><\/a><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/21.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"21\" border=\"0\" alt=\"21\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/21_thumb.png\" width=\"544\" height=\"476\" \/><\/a><a href=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/22.png\"><img loading=\"lazy\" decoding=\"async\" style=\"background-image: none; border-bottom: 0px; border-left: 0px; margin: 5px; padding-left: 0px; padding-right: 0px; display: inline; border-top: 0px; border-right: 0px; padding-top: 0px\" title=\"22\" border=\"0\" alt=\"22\" src=\"http:\/\/www.radians.com.ar\/Articulos\/Images\/Protegiendo-nuestro-Active-Directory-con_95FE\/22_thumb.png\" width=\"544\" height=\"481\" \/><\/a><\/p>\n<p align=\"justify\"><font size=\"2\">Con este ultimo paso hemos completado la instalaci\u00f3n y configuraci\u00f3n b\u00e1sica de Forefront Threat Management Gateway 2010. Espero que les sea \u00fatil, esta es una muy buena manera de tener seguro nuestra arquitectura de Active Directory y dem\u00e1s servidores de nuestra empresa.<\/font><\/p>\n<p align=\"justify\"><font size=\"2\">Saludos, Roberto Di Lello.<\/font><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hace unas semanas escrib\u00ed una nota sobre como proteger nuestra infraestructura de Active Directory con&#8230;<\/p>\n","protected":false},"author":1,"featured_media":4291,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[12,11],"tags":[],"class_list":["post-1391","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-2003-r2","category-2008-r2"],"_links":{"self":[{"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1391","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1391"}],"version-history":[{"count":0,"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1391\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=\/wp\/v2\/media\/4291"}],"wp:attachment":[{"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1391"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1391"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.radians.com.ar\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1391"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}