References
This appendix, which lists the references used in the IDMZ system, includes the following major topics:
Active Directory Services
Active Directory Domain Services:
Deploy Active Directory Domain Services (AD DS) in Your Enterprise
How Active Directory Replication Works
Active Directory Replication Technologies
Active Directory and Active Directory Domain Services Port Requirements
Active Directory Certificate Services
Active Directory Users and Computers
Application Security
FactoryTalk Security System Configuration Guide:
Using Rockwell Automation Products with Microsoft Enhanced Mitigation Experience Toolkit (EMET):
Using Rockwell Automation Software Products with AppLocker :
How AppLocker Works:
The EMT configuration can be downloaded from the knowledgebase article at:
Core Switch Architecture
Virtual Switching Systems (Release 15.1SY Supervisor Engine 2T Software Configuration Guide):
Virtual Switching Systems (Catalyst 6500 12.25X Software Configuration Guide):
Data Brokering
Cisco Telemetry Broker :
Cisco Telemetry Broker Virtual Appliance Deployment and Configuration Guide :
FactoryTalk Historian
FactoryTalk Historian website
FactoryTalk Historian Installation and Configuration Guide:
FactoryTalk Historian SE Historian To Historian Interface Installation and Configuration Guide:
FactoryTalk Historian SE FactoryTalk Historian To Historian Interface User Guide:
Identity Services
Deploying Identity Services within a Converged Plantwide Ethernet Architecture Design and Implementation Guide:
Cisco Identify Services Engine Hardware Installation Guide, Release 1.4 Cisco SNS-3400 Series Appliance Ports Reference:
Industrial Demilitarized Zone Firewalls
Cisco Secure Firewall :
Cisco Firepower 2100 Getting Started Guide; Deployment with FMC :
Cisco Firepower Management Center Configuration Guide :
Licensing
Cisco Smart Licensing :
Cisco Smart Software On-Prem User Guide :
Multi-Factor Authentication
Cisco Multi-Factor Authentication :
Cisco Duo Authentication Proxy :
Cisco FTD VPN with AnyConnect :
Duo Authentication for Windows Logon and RDP :
Duo Authentication for Microsoft Remote Desktop Gateway on Windows 2012 and Later :
Network Infrastructure Hardening
Cisco Guide to Harden Cisco IOS Devices:
Software Configuration Guide, Cisco IOS Release 15.2(2)E (Industrial Ethernet 2000 Switch) Configuring Switch-Based Authentication:
Network Time Protocol
Windows Time Service Technical Reference:
Network Time Protocol: Best Practices White Paper:
Windows Time Service Technical Reference:
Remote Access Server
Remote Access VPN for Firepower Threat Defense :
Remote Desktop Services Overview :
Deploying Remote Desktop Gateway Step-by-Step Guide :
Routing Between Zones
Enhanced Interior Gateway Routing Protocol White Paper:
OSPF Design Guide: