Reverse proxy with client certificate authentication

view full story

http://serverfault.com – My company wants to expose BizTalk services to external trading partners using ISA/TMG and SSL client certificates to authenticate. We were told by a Microsoft engineer that this is not possible if the certificates do not authenticate against our AD. Is this true? We are considering using Symantec Managed PKI. https://www.symantec.com/verisign/managed-pki-service (HowTos)

Submitted by taskli on 11/27/2012 – Made popular on 11/27/2012

Login or register to post comments
Email this page

Stories similar to Reverse proxy with client certificate authentication

Making My Own SSTP VPN 40 weeks 1 day ago

Imagine you have bought an SSTP VPN service from IAPS Security Store.

Can you replace the GoDaddy-countersigned certificate of this sstp with VeriSign SSL certificate that is available on Symantec store (Symantec Secure Site Pro with EV SSL Certificates) just by importing the new one into the existing (IAPS) SSTP connection while you're still connecting to IAPS servers?

Allow a managed SEP client modify its scan schedule? 50 weeks 2 days ago

Is there a way for a Symantec Endpoint Protection (SEP) administrator to configure managed clients to be allowed to configure their weekly scheduled scan?

Users can modify the schedule in the registry:

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Symantec\Symantec Endpoint Protection\AV\LocalScans\{hex number}\Schedule

But when the policy updates, the endpoint's changes will be overwritten.

[ubuntu] Problem validating Verisign certificates. 23 weeks 1 day ago

I am having issues with a set of sites that work fine from a browser on my Windows 7 box but not from my up-to-date Ubuntu 12.04 server. Some use a Verisign Class 3 Extended Verification SSL certificate as an intermediate certificate others use a Verisign Class 3 International certificate. OpenSSL, curl, firefox and chrome fail. I have an example below.

Update Verisign certificates 31 weeks 2 days ago

My bank has asked me to update my web servers certificates (the ones used to sign their api interface for credit card transactions).

The old verisign certificates were 1024bit and the new ones are 2048bit.

Using 12.04

How do I update the certificates?

New Symantec CEO, Channel Chief Step Into Spotlight 38 weeks 1 day ago

New Symantec (NASDAQ: SYMC) CEO Steve Bennett (l.) and Channel Chief John Eldh (r.) appear set to meet channel partners Sept. 11-12 in Baltimore, Md. What will their message be during Symantec Partner Engage? Here are some clues from The VAR Guy. First, some background.

Symantec CEO, Channel Chief: Partners Offer Cautious Applause 36 weeks 1 day ago

Nearly two months after Symantec (NASDAQ: SYMC) announced a new CEO, the security and storage software company is hosting a channel partner event in Baltimore, Md. Symantec indicated to The VAR Guy that both CEO Steve Bennett and Channel Chief John Eldh were scheduled to attend the event. But overall, the Symantec Partner Engage conference is a pretty low-key affair.

Symantec invests $1 million to expand security ops centre 35 weeks 2 days ago

Written by: Peter Dinham | Published in: MarketGlobal security firm, Symantec, has invested a million dollars in its newly expanded Australian security operations centre in Sydney which it says will support the rapid growth of its managed security services group.

Setup IIS to require client certificate and to use anonymous authentication 39 weeks 3 days ago

Setup IIS to require client certificate and to use anonymous authentication

I have a WCF web service for our customers to use. I want to protect this using client certificates.

openssl s_client hangs 36 weeks 2 days ago

I am trying to look at some ssl certs with openssl's s_client.