We are currently using User-ID to map users to IP addresses. It seems that there are three possible methods of preventing credentials from leaving a site, but I am not clear on which method is best. What are other folks doing? One of the methods involves spinning up a RODC, which seems to be the most accurate of the three methods, but there is cost with that one if you don't have licensing to cover that server. It's also another server to keep patched, so there's an on-going cost with that method.
We have the licensing to spin up a RODC server, but I'm not sure if the Pro's outweigh the Con's with that choice.
I'm interested in hearing what methods other people have used to implemented this very useful feature.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!