is there a solution is there not a solution?
WHy is it considered a bad design to host my NEthserver 7 AD in the cloud.
WHy is it considered a bad design to dedicate a Server for handling AD Only.
WHy is it considered a bad design to separate other nodes from the AD, or basically to deploy different another nethserver instances, that connect to the same Nethserver AD Node?
Isnt this the reason why NEthserver 8 was designed and built the way ot was built?
Also, How different is my design from, A company that deploys Nethserver AD on premise, and uses the same AD to authenticate to many NEthserver 7 instances, in the cloud, Hosting Publicly exposed services.
How again is it any different from an organization that has multiple branches, accros different regions, or countries, with Main AD server on a server in the main office, and other servers in other locations.
I AM SIMPLEY ASKING HOW DO I CONNECT A NS8 SERVER TO A NS7 SEERVER RUNNING AD without exposing the AD to the Open internet.,
the developers did not see merit in adding VPN to NS8, but was prioritised in Nethsecurity, though one of the use cases was for different Servers to be able to talk to each other over a VPN.
this in NS8 has been solved by cluster support and Built-in VPN support for the clusters, but
DOES THAT APPLY TO CONNECTING TO EXISTING NS7 AD from NS8?
this is a real world use cases, i am trying to figure out how to solve to enable me complete my migration, i need Help, @Andy_Wismer i respect your experience on the field of AD, but i now have a real world case of NS8 migration i need to handle,
I am also aware you have successfully migrated an existing NS7 to Ns8, but it had built-in AD
if you can help or have ideas, please shoot,
if not, ill request the dev team to assist with ideas, or someone in the community who has an idea
if its not possible yet at the moment, Good news, NS8 is still RC, maybe its a missing function that can be added in a future release, or maybe there is a workaround to achieve migration.
IF NS7 to NS8 migration tool utilises VPN to handle this migration, could a similar be there, or is it there for remote AD on NS7 as well
IF centos 7 was not EOL, and NS8 was not the next version, i would probably run the infra the same way for another 5 years,
please don’t mock me kindly, provide solution, I am learning as much as the other community members in this not so easy problem that seemingly i have created.