locked
Client based certificate authentication RRS feed

  • Question

  • Hi,

    I have a TMG 2010 and Exchange 2007.

    Need to enable client based certificate authentication for Outlook anywhere clients who connect remotely to exchange through TMG server. So only AD machines with a valid client certificate can use Outlook anywhere remotely.

    I have a couple of questions and any advise would be appreciated.

    1- Do I need an enterprise or standalone CA?

    2- Do I need to use "SSL client certificate" authentication on TMG or just if I tick "require client certificate" on the rule that should be enough?

    3- Do we need a user certificate to be used as client side certificate on the client machine or computer certificate can do it too?

    4- Is there any specific configuration required on Outlook?

    Thanks a lot

    ras

    Wednesday, May 13, 2015 10:58 PM

Answers