I was wondering if anyone could point me to some guidance on whether to use an ADDS or and ADFS trust between my internal AD forest and my External/DMZ forest?
We have internal users and external users that need to authenticate to a SharePoint farm in the DMZ. The external users come from many different organizations
We plan to create accounts in the external AD for each external user
Our security / firewall ppl do not like opening ports and so from my reading using ADFS we would only need to make sure 443 was open. Is this true? ADDS trusts seem to require several different ports to be open.
Finally are there any issues with SharePoint 2010 / people pickers etc with using ADFS trusts?
Any help would be greatly appreciated. I feel like I'm just going around in circles!