|
Home > Archive > IIS Server Security > June 2006 > IIS and client certificate
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
IIS and client certificate
|
|
| spiazzi67@gmail.com 2006-06-18, 7:24 am |
| Hi,
I have SBS2003.
I would expose exchange web in internert and intranet.
For intranet I would secure with IP filter.
For internet I would secure witch client certificate.
Now can I combine this methods? That is a person in my intranet that
haven't the certificate can access , because the IP is secure. A person
in internet with client trusted certificate can access also if he
hasn't an IP in the range.
It is possible and if yes what are the configuration?
Thanks
| |
| Ken Schaefer 2006-06-20, 1:37 am |
| I don't think you can combine these two requirements in the way that you
wish.
You could create a second virtual directory (e.g. /internalOWA) and point it
to the same location that the existing virtual directory does (/exchange).
Your internal clients would use one virtual directory (with the IP address
restriction), and your external clients would use the other (with the client
certificate restriction).
To make it a bit easier for your users, you could create a single page which
redirects the user to the relevant folder depending on whether they are
internal or external.
Cheers
Ken
<spiazzi67@gmail.com> wrote in message
news:1150617847.359731.203490@i40g2000cwc.googlegroups.com...
> Hi,
>
> I have SBS2003.
> I would expose exchange web in internert and intranet.
> For intranet I would secure with IP filter.
> For internet I would secure witch client certificate.
> Now can I combine this methods? That is a person in my intranet that
> haven't the certificate can access , because the IP is secure. A person
> in internet with client trusted certificate can access also if he
> hasn't an IP in the range.
>
> It is possible and if yes what are the configuration?
>
> Thanks
>
|
|
|
|
|