I'm looking into a security model in which we will have an occasionally connected (Click Once) application.
(Briefly: Our users use tablet PCs to collect data while in the field. If they have a broadband connection they can access network resources. Without a connection they can still capture data and MS Synch Services will synch things up when a connection is available.)
We use Active Directory for managment of Domain users and I'm looking to see if the Lightweight Directory Services (LDS) can be used when disconnected from our Domain to check authentication and authorization for the application while disconnected.
Our security team is considering a policy in that no user authentication information is maintained locally to the application. Any ideas?
(Briefly: Our users use tablet PCs to collect data while in the field. If they have a broadband connection they can access network resources. Without a connection they can still capture data and MS Synch Services will synch things up when a connection is available.)
We use Active Directory for managment of Domain users and I'm looking to see if the Lightweight Directory Services (LDS) can be used when disconnected from our Domain to check authentication and authorization for the application while disconnected.
Our security team is considering a policy in that no user authentication information is maintained locally to the application. Any ideas?