SlideShare a Scribd company logo

UAG Publishing Options for Remote Access and Applications

Download as PPTX, PDF
Fabrizio Volpe
Fabrizio Volpe

This document discusses Forefront Unified Access Gateway (UAG). It covers UAG architecture, support boundaries for UAG 2010 including only allowing inbound access control when used as a portal and not supporting multiple network adapters with a single NIC. It discusses the UAG access model including publishing applications via reverse proxy, port forwarding, and Direct Access. It also covers publishing applications like SharePoint and Remote Desktop and client components.

Technology
1 of 38
Grazie a Sponsor
Agenda • User Experience • UAG Usage • Forefront UAG architecture • UAG 2010: Support boundaries • UAG Access Model • Windows 2012 Direct Access And UAG • UAG Publishing
User Experience
User Experience - SharePoint WorkSpace Mobile
A Good Reason To Talk About UAG
UAG Usage Allow Integration anywhere with SSTP access DirectAccess Forefront UAG is used only Portal for inbound access control Endpoint Allow Customization compliance integration scan with NAP
Forefront UAG architecture Image from : Deploying Microsoft Forefront Unified Access Gateway 2010 Microsoft Press
What’s New In UAG 64-Bit Software Enhanced Host-based and Network Firewall Multi-Server Arrays Network Load Balancing UAG and DirectAccess Publishing Capabilities Remote Access Client VPN Services
Forefront UAG Service Pack 3 : What's New
UAG 2010: Support boundaries – Direct Access http://technet.microsoft.com/en-us/library/ee522953.aspx You can use Forefront UAG as a publishing server, creating trunks to publish corporate applications for access by remote client endpoints either directly, or via a Web portal. In addition, you can deploy Forefront UAG as a DirectAccess server, to extend the benefits of Windows DirectAccess across your infrastructure, providing transparent access for DirectAccess clients. Note the following : • A single server can be configured as both a Forefront UAG publishing server, and as a Forefront UAG DirectAccess server • An array can consist of Forefront UAG servers that act as both remote access publishing servers, and as Forefront UAG DirectAccess servers • You cannot publish the Network Connector application when Forefront UAG is configured as a DirectAccess server.
UAG 2010: Support boundaries – Network adapters http://technet.microsoft.com/en-us/library/ee522953.aspx • Forefront UAG supports configuration of two networks – internal and external. Connecting to different switches for network redundancy is supported, providing that both are defined as part of the internal or external network • Using Forefront TMG running on the Forefront UAG server to provide multiple network routing is not supported • Deployment with a single network adapter is not supported
UAG 2010: Support boundaries – Forefront TMG running on Forefront UAG http://technet.microsoft.com/en-us/library/ee522953.aspx By default, Forefront Threat Management Gateway (TMG) is installing during Forefront Unified Access Gateway (UAG) Setup. Forefront TMG is installed as a complete product, and is not modified to run on a Forefront UAG server Forefront UAG uses Forefront TMG, as follows: • Forefront TMG acts as a firewall, protecting the Forefront UAG server • Forefront UAG uses Forefront TMG infrastructure and functionality in some deployment and monitoring scenarios
Forefront UAG client devices http://technet.microsoft.com/en-US/library/dd920232.aspx Internet Explorer version Non-Internet Explorer browser Mobile browser support - Mobile operating system support -Brower version Internet Explorer 6 Windows RT Firefox 2.0.x Firefox 3.0.x Windows Phone 7, Windows Phone 7.5, Windows Phone 8 Internet Explorer 7 Firefox 3.5.x Windows Mobile 2005 for Pocket PC; Windows Mobile 6; Windows Internet Explorer 8 Firefox 4 Mobile 6.5 Firefox 10 Firefox 11 Internet Explorer 9 iPhone version 3.0.x Safari 3.2.x Internet Explorer 10 (64-bit) iOS: 4.x and 5.x on iPhone and iPad Safari 4.0.x Safari 5.0.x Android: Phone 2.3; Tablet 3.0; Phone 4.0; Tablet 4.0 Internet Explorer 10 (32-bit) Opera 9 Nokia : S60 3rd edition, S60 3rd edition, Feature Pack 2, S60 5th edition
Windows 2012 Direct Access And UAG UAG features for DirectAccess have been rolled into Server 2012 Side-by-Side Migration of Forefront UAG DirectAccess http://technet.microsoft.com/en- us/library/hh831623.aspx
UAG Access Model Non Web Based Web Applications Reverse Port Applications Proxy And Forwarding Portal Direct SSTP or Network Vpn «Transparent» Access Connector Remote Access
UAG Standalone Or Domain Member ? UAG can be deployed as either a domain member or a workgroup member SSTP VPN connection Scenarios that REQUIRE Certifcate based authentication domain membership : File server access
Fault Tolerance and Load Balancing • A Forefront UAG server array is configured as, and acts like, a single logical Forefront UAG server • Configuration is performed once, at the array manager, and then is distributed automatically to all the array member • Forefront UAG is integrated with Network Load Balancing • Do not configure NLB on the Forefront UAG server in the Windows Network Load Balancing console • Alternative : external load balancer (check for compliance with Direct Access)
UAG Requirements • The minimum hardware requirements are as follows: – 2.66 GHz, Dual core CPU – 4 GB memory and 2.5 GB of free disk space – Two network adapters • There is no official sizing guide for UAG • Reserve enough disk space for the logs
UAG Publishing • Access to our applications and resources to people coming from different locations, and from different devices • Single web application or a Forefront UAG portal (that consolidates multiple resources in a single gateway)
Publishing – Portals All applications that you want to publish through Forefront UAG need to be part of a portal
Publishing – Trunks UAG establishes A series of rules A website in IIS a listener in TMG
Multiple Trunks • A UAG server can contain multiple trunks, depending on how many IP addresses are assigned to its external interface • At any point, an administrator can add IP addresses to the external NIC of the UAG server, add public DNS mappings to these addresses, and add more trunks
UAG Applications • An "application" for UAG is a collection of settings and rules that determine how UAG publishes a certain internal website or application
Types Of Applications • Over 40 «templates» – Built-in services – Web (applications) – Client/Server and Legacy • Remote Network Access -> Full VPN – Browser-embedded • XenApp – Terminal Services and Remote Desktop
HAT and AAM • Host Address Translation (HAT) to publish internal servers with no FQDN resolvable on the external networks – Publish multiple servers from within the organization, all on a single IP and port • SharePoint has a feature called Alternate Access Mappings (AAM) that modifies the URLs before they are sent to UAG
Portal And Direct connection Portal Direct connection We are able to create a We can publish a web Applications will be web portal to act as a application with a public published in the portal gateway FQDN
Authentication Repository External users are authenticated against a variety of authentication directories
Creating a Portal DEMO
Publishing SharePoint
Publishing SharePoint DEMO
Publishing Exchange • Outlook Web App • Outlook Anywhere(RPC-over-HTTPS) • ActiveSync • Configure Exchange publishing : – As a normal application – Directly during the process of creating a trunk (Create Trunk Wizard)
Remote Connectivity • Network Connector – Listens and tunnels ALL traffic into the internal network • Secure Socket Tunneling Protocol – SSTP is a Windows Server feature that is new to Windows Server 2008 – On the client side, the SSTP "client" is also built-in – UAG adds clients auto configuration • DirectAccess
Publishing remote network access with SSTP DEMO
Remote Desktop • Configure the RemoteApp on your Terminal Server RemoteApp • Export the RemoteApp configuration as a TSPUB • Make it available to UAG Remote Desktop (Predefined) Remote Desktop (User Defined)
Publishing File Access and Local Drive Mapping applications DEMO
Client Components • The UAG client components are automatically installed on computer that connects to the UAG portal : – Endpoint detection – They contain the SSL tunneling components – Endpoint Session Cleanup component, which cleans up the user's system after a session has ended
Q&A Tutto il nateriale di questa sessione su http://www.communitydays.it/ #CDays13

Recommended

Hybrid Clouds: “Silver Bullet” of the Cloud Computing?
Hybrid Clouds: “Silver Bullet” of the Cloud Computing?Hybrid Clouds: “Silver Bullet” of the Cloud Computing?
Hybrid Clouds: “Silver Bullet” of the Cloud Computing?Fabrizio Volpe
 
CompTIA Security Plus Mini Bootcamp Session
CompTIA Security Plus Mini Bootcamp Session CompTIA Security Plus Mini Bootcamp Session
CompTIA Security Plus Mini Bootcamp Session Joseph Holbrook, Chief Learning Officer (CLO)
 
Networking deep dive
Networking deep diveNetworking deep dive
Networking deep diveJeroen Niesen
 
Azure privatelink
Azure privatelinkAzure privatelink
Azure privatelinkUdaiappa Ramachandran
 
Azure IoT Hub: what is it and why we select other solution (production projec...
Azure IoT Hub: what is it and why we select other solution (production projec...Azure IoT Hub: what is it and why we select other solution (production projec...
Azure IoT Hub: what is it and why we select other solution (production projec...Katherine Golovinova
 
CompTIA Security Plus Overview
CompTIA Security Plus OverviewCompTIA Security Plus Overview
CompTIA Security Plus OverviewJoseph Holbrook, Chief Learning Officer (CLO)
 
DEVNET-1128 Cisco Intercloud Fabric NB Api's for Business & Providers
DEVNET-1128 Cisco Intercloud Fabric NB Api's for Business & ProvidersDEVNET-1128 Cisco Intercloud Fabric NB Api's for Business & Providers
DEVNET-1128 Cisco Intercloud Fabric NB Api's for Business & ProvidersCisco DevNet
 
Microsoft Direct Access (Part II)_John Delizo
Microsoft Direct Access (Part II)_John DelizoMicrosoft Direct Access (Part II)_John Delizo
Microsoft Direct Access (Part II)_John DelizoQuek Lilian
 

Recommended

Hybrid Clouds: “Silver Bullet” of the Cloud Computing?
Hybrid Clouds: “Silver Bullet” of the Cloud Computing?Hybrid Clouds: “Silver Bullet” of the Cloud Computing?
Hybrid Clouds: “Silver Bullet” of the Cloud Computing?Fabrizio Volpe
 
CompTIA Security Plus Mini Bootcamp Session
CompTIA Security Plus Mini Bootcamp Session CompTIA Security Plus Mini Bootcamp Session
CompTIA Security Plus Mini Bootcamp Session Joseph Holbrook, Chief Learning Officer (CLO)
 
Networking deep dive
Networking deep diveNetworking deep dive
Networking deep diveJeroen Niesen
 
Azure privatelink
Azure privatelinkAzure privatelink
Azure privatelinkUdaiappa Ramachandran
 
Azure IoT Hub: what is it and why we select other solution (production projec...
Azure IoT Hub: what is it and why we select other solution (production projec...Azure IoT Hub: what is it and why we select other solution (production projec...
Azure IoT Hub: what is it and why we select other solution (production projec...Katherine Golovinova
 
CompTIA Security Plus Overview
CompTIA Security Plus OverviewCompTIA Security Plus Overview
CompTIA Security Plus OverviewJoseph Holbrook, Chief Learning Officer (CLO)
 
DEVNET-1128 Cisco Intercloud Fabric NB Api's for Business & Providers
DEVNET-1128 Cisco Intercloud Fabric NB Api's for Business & ProvidersDEVNET-1128 Cisco Intercloud Fabric NB Api's for Business & Providers
DEVNET-1128 Cisco Intercloud Fabric NB Api's for Business & ProvidersCisco DevNet
 
Microsoft Direct Access (Part II)_John Delizo
Microsoft Direct Access (Part II)_John DelizoMicrosoft Direct Access (Part II)_John Delizo
Microsoft Direct Access (Part II)_John DelizoQuek Lilian
 
Microsoft Direct Access (part 1)_John Delizo
Microsoft Direct Access (part 1)_John DelizoMicrosoft Direct Access (part 1)_John Delizo
Microsoft Direct Access (part 1)_John DelizoQuek Lilian
 
Azure WAF
Azure WAFAzure WAF
Azure WAFCheah Eng Soon
 
VMware vCloud Air: Security Infrastructure and Process Overview
VMware vCloud Air: Security Infrastructure and Process OverviewVMware vCloud Air: Security Infrastructure and Process Overview
VMware vCloud Air: Security Infrastructure and Process OverviewVMware
 
What is direct access?
What is direct access?What is direct access?
What is direct access?Shery Techyboy
 
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17 IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17 Natalia Kataoka
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud ComputingAniket Saxena
 
Azure security
Azure securityAzure security
Azure securityLalit Rawat
 
Week 4 lecture material cc (1)
Week 4 lecture material cc (1)Week 4 lecture material cc (1)
Week 4 lecture material cc (1)Ankit Gupta
 
Microsoft direct access
Microsoft direct accessMicrosoft direct access
Microsoft direct accessMartin Hairer
 
Microservices: Where do they fit within a rapidly evolving integration archit...
Microservices: Where do they fit within a rapidly evolving integration archit...Microservices: Where do they fit within a rapidly evolving integration archit...
Microservices: Where do they fit within a rapidly evolving integration archit...Kim Clark
 
Building Open Source IoT Cloud
Building Open Source IoT CloudBuilding Open Source IoT Cloud
Building Open Source IoT Clouddejanb
 
VMware vCloud Air Deep Dive into Hybrid Cloud Management
VMware vCloud Air Deep Dive into Hybrid Cloud ManagementVMware vCloud Air Deep Dive into Hybrid Cloud Management
VMware vCloud Air Deep Dive into Hybrid Cloud ManagementVMware
 
Microservices Technology Stack
Microservices Technology StackMicroservices Technology Stack
Microservices Technology StackEberhard Wolff
 
Skip the anxiety attack when building secure containerized apps
Skip the anxiety attack when building secure containerized appsSkip the anxiety attack when building secure containerized apps
Skip the anxiety attack when building secure containerized appsHaidee McMahon
 
VMware Horizon Customer Presentation EN
VMware Horizon Customer Presentation ENVMware Horizon Customer Presentation EN
VMware Horizon Customer Presentation ENDaron Walker
 
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)Sam Vanhoutte
 
Security in the cloud Workshop HSTC 2014
Security in the cloud Workshop HSTC 2014Security in the cloud Workshop HSTC 2014
Security in the cloud Workshop HSTC 2014Akash Mahajan
 
Understanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersUnderstanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersDevOps.com
 
The Internet of things for integration people - UKCSUG - public version
The Internet of things for integration people - UKCSUG - public versionThe Internet of things for integration people - UKCSUG - public version
The Internet of things for integration people - UKCSUG - public versionSam Vanhoutte
 
Citirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise MobilityCitirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise MobilityDigicomp Academy AG
 
Remote Web Desk
Remote Web DeskRemote Web Desk
Remote Web DeskSatish Chandra
 
Transparent proxy - SIP - 2014 - NCC LAB
Transparent proxy - SIP - 2014 - NCC LABTransparent proxy - SIP - 2014 - NCC LAB
Transparent proxy - SIP - 2014 - NCC LABBenith T
 

More Related Content

What's hot

Microsoft Direct Access (part 1)_John Delizo
Microsoft Direct Access (part 1)_John DelizoMicrosoft Direct Access (part 1)_John Delizo
Microsoft Direct Access (part 1)_John DelizoQuek Lilian
 
VMware vCloud Air: Security Infrastructure and Process Overview
VMware vCloud Air: Security Infrastructure and Process OverviewVMware vCloud Air: Security Infrastructure and Process Overview
VMware vCloud Air: Security Infrastructure and Process OverviewVMware
 
What is direct access?
What is direct access?What is direct access?
What is direct access?Shery Techyboy
 
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17 IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17 Natalia Kataoka
 
Week 4 lecture material cc (1)
Week 4 lecture material cc (1)Week 4 lecture material cc (1)
Week 4 lecture material cc (1)Ankit Gupta
 
Microsoft direct access
Microsoft direct accessMicrosoft direct access
Microsoft direct accessMartin Hairer
 
Microservices: Where do they fit within a rapidly evolving integration archit...
Microservices: Where do they fit within a rapidly evolving integration archit...Microservices: Where do they fit within a rapidly evolving integration archit...
Microservices: Where do they fit within a rapidly evolving integration archit...Kim Clark
 
Building Open Source IoT Cloud
Building Open Source IoT CloudBuilding Open Source IoT Cloud
Building Open Source IoT Clouddejanb
 
VMware vCloud Air Deep Dive into Hybrid Cloud Management
VMware vCloud Air Deep Dive into Hybrid Cloud ManagementVMware vCloud Air Deep Dive into Hybrid Cloud Management
VMware vCloud Air Deep Dive into Hybrid Cloud ManagementVMware
 
Microservices Technology Stack
Microservices Technology StackMicroservices Technology Stack
Microservices Technology StackEberhard Wolff
 
Skip the anxiety attack when building secure containerized apps
Skip the anxiety attack when building secure containerized appsSkip the anxiety attack when building secure containerized apps
Skip the anxiety attack when building secure containerized appsHaidee McMahon
 
VMware Horizon Customer Presentation EN
VMware Horizon Customer Presentation ENVMware Horizon Customer Presentation EN
VMware Horizon Customer Presentation ENDaron Walker
 
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)Sam Vanhoutte
 
Security in the cloud Workshop HSTC 2014
Security in the cloud Workshop HSTC 2014Security in the cloud Workshop HSTC 2014
Security in the cloud Workshop HSTC 2014Akash Mahajan
 
Understanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersUnderstanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersDevOps.com
 
The Internet of things for integration people - UKCSUG - public version
The Internet of things for integration people - UKCSUG - public versionThe Internet of things for integration people - UKCSUG - public version
The Internet of things for integration people - UKCSUG - public versionSam Vanhoutte
 
Citirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise MobilityCitirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise MobilityDigicomp Academy AG
 

What's hot (20)

Microsoft Direct Access (part 1)_John Delizo
Microsoft Direct Access (part 1)_John DelizoMicrosoft Direct Access (part 1)_John Delizo
Microsoft Direct Access (part 1)_John Delizo
 
Azure WAF
Azure WAFAzure WAF
Azure WAF
 
VMware vCloud Air: Security Infrastructure and Process Overview
VMware vCloud Air: Security Infrastructure and Process OverviewVMware vCloud Air: Security Infrastructure and Process Overview
VMware vCloud Air: Security Infrastructure and Process Overview
 
What is direct access?
What is direct access?What is direct access?
What is direct access?
 
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17 IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
Azure security
Azure securityAzure security
Azure security
 
Week 4 lecture material cc (1)
Week 4 lecture material cc (1)Week 4 lecture material cc (1)
Week 4 lecture material cc (1)
 
Microsoft direct access
Microsoft direct accessMicrosoft direct access
Microsoft direct access
 
Microservices: Where do they fit within a rapidly evolving integration archit...
Microservices: Where do they fit within a rapidly evolving integration archit...Microservices: Where do they fit within a rapidly evolving integration archit...
Microservices: Where do they fit within a rapidly evolving integration archit...
 
Building Open Source IoT Cloud
Building Open Source IoT CloudBuilding Open Source IoT Cloud
Building Open Source IoT Cloud
 
VMware vCloud Air Deep Dive into Hybrid Cloud Management
VMware vCloud Air Deep Dive into Hybrid Cloud ManagementVMware vCloud Air Deep Dive into Hybrid Cloud Management
VMware vCloud Air Deep Dive into Hybrid Cloud Management
 
Microservices Technology Stack
Microservices Technology StackMicroservices Technology Stack
Microservices Technology Stack
 
Skip the anxiety attack when building secure containerized apps
Skip the anxiety attack when building secure containerized appsSkip the anxiety attack when building secure containerized apps
Skip the anxiety attack when building secure containerized apps
 
VMware Horizon Customer Presentation EN
VMware Horizon Customer Presentation ENVMware Horizon Customer Presentation EN
VMware Horizon Customer Presentation EN
 
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)
AzureConf 2014 - Azure hybrid connections (Sam Vanhoutte)
 
Security in the cloud Workshop HSTC 2014
Security in the cloud Workshop HSTC 2014Security in the cloud Workshop HSTC 2014
Security in the cloud Workshop HSTC 2014
 
Understanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps EngineersUnderstanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
Understanding the New Enterprise Multi-Cloud Backbone for DevOps Engineers
 
The Internet of things for integration people - UKCSUG - public version
The Internet of things for integration people - UKCSUG - public versionThe Internet of things for integration people - UKCSUG - public version
The Internet of things for integration people - UKCSUG - public version
 
Citirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise MobilityCitirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise Mobility
 

Similar to UAG Publishing Options for Remote Access and Applications

Transparent proxy - SIP - 2014 - NCC LAB
Transparent proxy - SIP - 2014 - NCC LABTransparent proxy - SIP - 2014 - NCC LAB
Transparent proxy - SIP - 2014 - NCC LABBenith T
 
Phonegap android angualr material design
Phonegap android angualr material designPhonegap android angualr material design
Phonegap android angualr material designSrinadh Kanugala
 
New Products Overview: Use Cases and Demos
New Products Overview: Use Cases and DemosNew Products Overview: Use Cases and Demos
New Products Overview: Use Cases and DemosCaitlin Magat
 
New Products Overview: Use Cases and Demos
New Products Overview: Use Cases and DemosNew Products Overview: Use Cases and Demos
New Products Overview: Use Cases and DemosCloudflare
 
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICESCENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICESNazmul Hossain Rakib
 
CCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best PracticesCCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best Practiceswalk2talk srl
 
Benefits of an Open environment with Wakanda
Benefits of an Open environment with WakandaBenefits of an Open environment with Wakanda
Benefits of an Open environment with WakandaAlexandre Morgaut
 
InTouch Machine Edition 2014 R2: What is New and Advanced Features
InTouch Machine Edition 2014 R2: What is New and Advanced FeaturesInTouch Machine Edition 2014 R2: What is New and Advanced Features
InTouch Machine Edition 2014 R2: What is New and Advanced FeaturesWonderware InTouch Machine Edition
 
Azure Cloud Application Development Workshop - UGIdotNET
Azure Cloud Application Development Workshop - UGIdotNETAzure Cloud Application Development Workshop - UGIdotNET
Azure Cloud Application Development Workshop - UGIdotNETLorenzo Barbieri
 
Programmable infrastructure with FlyScript
Programmable infrastructure with FlyScriptProgrammable infrastructure with FlyScript
Programmable infrastructure with FlyScriptRiverbed Technology
 
SharePoint and Forefront United Access Gateway
SharePoint and Forefront United Access Gateway SharePoint and Forefront United Access Gateway
SharePoint and Forefront United Access Gateway Planet Technologies
 
Meet Magento Spain 2019 - Our Experience with Magento Cloud
Meet Magento Spain 2019 - Our Experience with Magento CloudMeet Magento Spain 2019 - Our Experience with Magento Cloud
Meet Magento Spain 2019 - Our Experience with Magento CloudLyzun Oleksandr
 
Design and Configuration of App Supportive Indirect Internet Access using a ...
Design and Configuration of App Supportive Indirect Internet Access using a ...Design and Configuration of App Supportive Indirect Internet Access using a ...
Design and Configuration of App Supportive Indirect Internet Access using a ...IJMER
 
Make the Shift from Manual to Automation with Open Source
Make the Shift from Manual to Automation with Open SourceMake the Shift from Manual to Automation with Open Source
Make the Shift from Manual to Automation with Open SourcePerfecto by Perforce
 
What's New in IBM Streams V4.2
What's New in IBM Streams V4.2What's New in IBM Streams V4.2
What's New in IBM Streams V4.2lisanl
 

Similar to UAG Publishing Options for Remote Access and Applications (20)

Remote Web Desk
Remote Web DeskRemote Web Desk
Remote Web Desk
 
Transparent proxy - SIP - 2014 - NCC LAB
Transparent proxy - SIP - 2014 - NCC LABTransparent proxy - SIP - 2014 - NCC LAB
Transparent proxy - SIP - 2014 - NCC LAB
 
Phonegap android angualr material design
Phonegap android angualr material designPhonegap android angualr material design
Phonegap android angualr material design
 
New Products Overview: Use Cases and Demos
New Products Overview: Use Cases and DemosNew Products Overview: Use Cases and Demos
New Products Overview: Use Cases and Demos
 
New Products Overview: Use Cases and Demos
New Products Overview: Use Cases and DemosNew Products Overview: Use Cases and Demos
New Products Overview: Use Cases and Demos
 
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICESCENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
CENTRAL MANAGEMENT OF NETWORK AND CALL SERVICES
 
CCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best PracticesCCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best Practices
 
Benefits of an Open environment with Wakanda
Benefits of an Open environment with WakandaBenefits of an Open environment with Wakanda
Benefits of an Open environment with Wakanda
 
InTouch Machine Edition 2014 R2: What is New and Advanced Features
InTouch Machine Edition 2014 R2: What is New and Advanced FeaturesInTouch Machine Edition 2014 R2: What is New and Advanced Features
InTouch Machine Edition 2014 R2: What is New and Advanced Features
 
Azure Cloud Application Development Workshop - UGIdotNET
Azure Cloud Application Development Workshop - UGIdotNETAzure Cloud Application Development Workshop - UGIdotNET
Azure Cloud Application Development Workshop - UGIdotNET
 
Fiware, the future internet
Fiware, the future internetFiware, the future internet
Fiware, the future internet
 
Programmable infrastructure with FlyScript
Programmable infrastructure with FlyScriptProgrammable infrastructure with FlyScript
Programmable infrastructure with FlyScript
 
SharePoint and Forefront United Access Gateway
SharePoint and Forefront United Access Gateway SharePoint and Forefront United Access Gateway
SharePoint and Forefront United Access Gateway
 
Meet Magento Spain 2019 - Our Experience with Magento Cloud
Meet Magento Spain 2019 - Our Experience with Magento CloudMeet Magento Spain 2019 - Our Experience with Magento Cloud
Meet Magento Spain 2019 - Our Experience with Magento Cloud
 
Design and Configuration of App Supportive Indirect Internet Access using a ...
Design and Configuration of App Supportive Indirect Internet Access using a ...Design and Configuration of App Supportive Indirect Internet Access using a ...
Design and Configuration of App Supportive Indirect Internet Access using a ...
 
Make the Shift from Manual to Automation with Open Source
Make the Shift from Manual to Automation with Open SourceMake the Shift from Manual to Automation with Open Source
Make the Shift from Manual to Automation with Open Source
 
What's New in IBM Streams V4.2
What's New in IBM Streams V4.2What's New in IBM Streams V4.2
What's New in IBM Streams V4.2
 
Getting Started with ASP.NET vNext
Getting Started with ASP.NET vNextGetting Started with ASP.NET vNext
Getting Started with ASP.NET vNext
 
Unify - JSConf.EU 2010
Unify - JSConf.EU 2010Unify - JSConf.EU 2010
Unify - JSConf.EU 2010
 
Cloud Platform as a Service: Heroku
Cloud Platform as a Service: HerokuCloud Platform as a Service: Heroku
Cloud Platform as a Service: Heroku
 

More from Fabrizio Volpe

Skype for business mobility
Skype for business mobilitySkype for business mobility
Skype for business mobilityFabrizio Volpe
 
Skype for business understanding what is new, preview or unchanged
Skype for business understanding what is new, preview or unchangedSkype for business understanding what is new, preview or unchanged
Skype for business understanding what is new, preview or unchangedFabrizio Volpe
 
Deploying lync evaluating costs and complexities
Deploying lync evaluating costs and complexitiesDeploying lync evaluating costs and complexities
Deploying lync evaluating costs and complexitiesFabrizio Volpe
 
Lync server overview (Inroduction) US English
Lync server overview (Inroduction) US EnglishLync server overview (Inroduction) US English
Lync server overview (Inroduction) US EnglishFabrizio Volpe
 
Planning, deploying and managing a microsoft vdi infrastructure (slides tra...
Planning, deploying and managing a microsoft vdi infrastructure (slides tra...Planning, deploying and managing a microsoft vdi infrastructure (slides tra...
Planning, deploying and managing a microsoft vdi infrastructure (slides tra...Fabrizio Volpe
 
Private cloud infrastructure configure and deploy 24 hiapc fabrizio volpe
Private cloud infrastructure configure and deploy 24 hiapc fabrizio volpePrivate cloud infrastructure configure and deploy 24 hiapc fabrizio volpe
Private cloud infrastructure configure and deploy 24 hiapc fabrizio volpeFabrizio Volpe
 
Infrastructure components configure and deploy 24 hiapc fabrizio volpe
Infrastructure components configure and deploy 24 hiapc fabrizio volpeInfrastructure components configure and deploy 24 hiapc fabrizio volpe
Infrastructure components configure and deploy 24 hiapc fabrizio volpeFabrizio Volpe
 
Lync Server 2010: High Availability [I3004]
Lync Server 2010: High Availability [I3004] Lync Server 2010: High Availability [I3004]
Lync Server 2010: High Availability [I3004] Fabrizio Volpe
 
Lync Server 2010: Introduzione [I2001]
Lync Server 2010: Introduzione [I2001]Lync Server 2010: Introduzione [I2001]
Lync Server 2010: Introduzione [I2001]Fabrizio Volpe
 
Lync server 2010 overview
Lync server 2010 overviewLync server 2010 overview
Lync server 2010 overviewFabrizio Volpe
 
4. tmg 2010 e uag 2010
4. tmg 2010 e uag 20104. tmg 2010 e uag 2010
4. tmg 2010 e uag 2010Fabrizio Volpe
 
System center virtual machine manager self service portal 2.0
System center virtual machine manager self service portal 2.0System center virtual machine manager self service portal 2.0
System center virtual machine manager self service portal 2.0Fabrizio Volpe
 
Pianificare, realizzare e gestire una infrastruttura Microsoft VDI
Pianificare, realizzare e gestire una infrastruttura Microsoft VDIPianificare, realizzare e gestire una infrastruttura Microsoft VDI
Pianificare, realizzare e gestire una infrastruttura Microsoft VDIFabrizio Volpe
 
Community Days 2012 - Tecnologie di desktop virtualization
Community Days 2012 - Tecnologie di desktop virtualization Community Days 2012 - Tecnologie di desktop virtualization
Community Days 2012 - Tecnologie di desktop virtualization Fabrizio Volpe
 

More from Fabrizio Volpe (17)

Skype for business mobility
Skype for business mobilitySkype for business mobility
Skype for business mobility
 
Skype for business understanding what is new, preview or unchanged
Skype for business understanding what is new, preview or unchangedSkype for business understanding what is new, preview or unchanged
Skype for business understanding what is new, preview or unchanged
 
Deploying lync evaluating costs and complexities
Deploying lync evaluating costs and complexitiesDeploying lync evaluating costs and complexities
Deploying lync evaluating costs and complexities
 
Lync server overview (Inroduction) US English
Lync server overview (Inroduction) US EnglishLync server overview (Inroduction) US English
Lync server overview (Inroduction) US English
 
Planning, deploying and managing a microsoft vdi infrastructure (slides tra...
Planning, deploying and managing a microsoft vdi infrastructure (slides tra...Planning, deploying and managing a microsoft vdi infrastructure (slides tra...
Planning, deploying and managing a microsoft vdi infrastructure (slides tra...
 
Private cloud infrastructure configure and deploy 24 hiapc fabrizio volpe
Private cloud infrastructure configure and deploy 24 hiapc fabrizio volpePrivate cloud infrastructure configure and deploy 24 hiapc fabrizio volpe
Private cloud infrastructure configure and deploy 24 hiapc fabrizio volpe
 
Infrastructure components configure and deploy 24 hiapc fabrizio volpe
Infrastructure components configure and deploy 24 hiapc fabrizio volpeInfrastructure components configure and deploy 24 hiapc fabrizio volpe
Infrastructure components configure and deploy 24 hiapc fabrizio volpe
 
Lync Server 2010: High Availability [I3004]
Lync Server 2010: High Availability [I3004] Lync Server 2010: High Availability [I3004]
Lync Server 2010: High Availability [I3004]
 
Lync Server 2010: Introduzione [I2001]
Lync Server 2010: Introduzione [I2001]Lync Server 2010: Introduzione [I2001]
Lync Server 2010: Introduzione [I2001]
 
Lync server 2010 overview
Lync server 2010 overviewLync server 2010 overview
Lync server 2010 overview
 
4. tmg 2010 e uag 2010
4. tmg 2010 e uag 20104. tmg 2010 e uag 2010
4. tmg 2010 e uag 2010
 
3. email relay fpe
3. email relay fpe3. email relay fpe
3. email relay fpe
 
2. secure web gateway
2. secure web gateway2. secure web gateway
2. secure web gateway
 
1. introduzione a TMG
1. introduzione a TMG1. introduzione a TMG
1. introduzione a TMG
 
System center virtual machine manager self service portal 2.0
System center virtual machine manager self service portal 2.0System center virtual machine manager self service portal 2.0
System center virtual machine manager self service portal 2.0
 
Pianificare, realizzare e gestire una infrastruttura Microsoft VDI
Pianificare, realizzare e gestire una infrastruttura Microsoft VDIPianificare, realizzare e gestire una infrastruttura Microsoft VDI
Pianificare, realizzare e gestire una infrastruttura Microsoft VDI
 
Community Days 2012 - Tecnologie di desktop virtualization
Community Days 2012 - Tecnologie di desktop virtualization Community Days 2012 - Tecnologie di desktop virtualization
Community Days 2012 - Tecnologie di desktop virtualization
 

Recently uploaded

08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsPrecisely
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 

Recently uploaded (20)

08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power Systems
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 

UAG Publishing Options for Remote Access and Applications

  • 1.
  • 2. Grazie a Sponsor
  • 3. Agenda • User Experience • UAG Usage • Forefront UAG architecture • UAG 2010: Support boundaries • UAG Access Model • Windows 2012 Direct Access And UAG • UAG Publishing
  • 5. User Experience - SharePoint WorkSpace Mobile
  • 6. A Good Reason To Talk About UAG
  • 7. UAG Usage Allow Integration anywhere with SSTP access DirectAccess Forefront UAG is used only Portal for inbound access control Endpoint Allow Customization compliance integration scan with NAP
  • 8. Forefront UAG architecture Image from : Deploying Microsoft Forefront Unified Access Gateway 2010 Microsoft Press
  • 9. What’s New In UAG 64-Bit Software Enhanced Host-based and Network Firewall Multi-Server Arrays Network Load Balancing UAG and DirectAccess Publishing Capabilities Remote Access Client VPN Services
  • 10. Forefront UAG Service Pack 3 : What's New
  • 11. UAG 2010: Support boundaries – Direct Access http://technet.microsoft.com/en-us/library/ee522953.aspx You can use Forefront UAG as a publishing server, creating trunks to publish corporate applications for access by remote client endpoints either directly, or via a Web portal. In addition, you can deploy Forefront UAG as a DirectAccess server, to extend the benefits of Windows DirectAccess across your infrastructure, providing transparent access for DirectAccess clients. Note the following : • A single server can be configured as both a Forefront UAG publishing server, and as a Forefront UAG DirectAccess server • An array can consist of Forefront UAG servers that act as both remote access publishing servers, and as Forefront UAG DirectAccess servers • You cannot publish the Network Connector application when Forefront UAG is configured as a DirectAccess server.
  • 12. UAG 2010: Support boundaries – Network adapters http://technet.microsoft.com/en-us/library/ee522953.aspx • Forefront UAG supports configuration of two networks – internal and external. Connecting to different switches for network redundancy is supported, providing that both are defined as part of the internal or external network • Using Forefront TMG running on the Forefront UAG server to provide multiple network routing is not supported • Deployment with a single network adapter is not supported
  • 13. UAG 2010: Support boundaries – Forefront TMG running on Forefront UAG http://technet.microsoft.com/en-us/library/ee522953.aspx By default, Forefront Threat Management Gateway (TMG) is installing during Forefront Unified Access Gateway (UAG) Setup. Forefront TMG is installed as a complete product, and is not modified to run on a Forefront UAG server Forefront UAG uses Forefront TMG, as follows: • Forefront TMG acts as a firewall, protecting the Forefront UAG server • Forefront UAG uses Forefront TMG infrastructure and functionality in some deployment and monitoring scenarios
  • 14. Forefront UAG client devices http://technet.microsoft.com/en-US/library/dd920232.aspx Internet Explorer version Non-Internet Explorer browser Mobile browser support - Mobile operating system support -Brower version Internet Explorer 6 Windows RT Firefox 2.0.x Firefox 3.0.x Windows Phone 7, Windows Phone 7.5, Windows Phone 8 Internet Explorer 7 Firefox 3.5.x Windows Mobile 2005 for Pocket PC; Windows Mobile 6; Windows Internet Explorer 8 Firefox 4 Mobile 6.5 Firefox 10 Firefox 11 Internet Explorer 9 iPhone version 3.0.x Safari 3.2.x Internet Explorer 10 (64-bit) iOS: 4.x and 5.x on iPhone and iPad Safari 4.0.x Safari 5.0.x Android: Phone 2.3; Tablet 3.0; Phone 4.0; Tablet 4.0 Internet Explorer 10 (32-bit) Opera 9 Nokia : S60 3rd edition, S60 3rd edition, Feature Pack 2, S60 5th edition
  • 15. Windows 2012 Direct Access And UAG UAG features for DirectAccess have been rolled into Server 2012 Side-by-Side Migration of Forefront UAG DirectAccess http://technet.microsoft.com/en- us/library/hh831623.aspx
  • 16. UAG Access Model Non Web Based Web Applications Reverse Port Applications Proxy And Forwarding Portal Direct SSTP or Network Vpn «Transparent» Access Connector Remote Access
  • 17. UAG Standalone Or Domain Member ? UAG can be deployed as either a domain member or a workgroup member SSTP VPN connection Scenarios that REQUIRE Certifcate based authentication domain membership : File server access
  • 18. Fault Tolerance and Load Balancing • A Forefront UAG server array is configured as, and acts like, a single logical Forefront UAG server • Configuration is performed once, at the array manager, and then is distributed automatically to all the array member • Forefront UAG is integrated with Network Load Balancing • Do not configure NLB on the Forefront UAG server in the Windows Network Load Balancing console • Alternative : external load balancer (check for compliance with Direct Access)
  • 19. UAG Requirements • The minimum hardware requirements are as follows: – 2.66 GHz, Dual core CPU – 4 GB memory and 2.5 GB of free disk space – Two network adapters • There is no official sizing guide for UAG • Reserve enough disk space for the logs
  • 20. UAG Publishing • Access to our applications and resources to people coming from different locations, and from different devices • Single web application or a Forefront UAG portal (that consolidates multiple resources in a single gateway)
  • 21. Publishing – Portals All applications that you want to publish through Forefront UAG need to be part of a portal
  • 22. Publishing – Trunks UAG establishes A series of rules A website in IIS a listener in TMG
  • 23. Multiple Trunks • A UAG server can contain multiple trunks, depending on how many IP addresses are assigned to its external interface • At any point, an administrator can add IP addresses to the external NIC of the UAG server, add public DNS mappings to these addresses, and add more trunks
  • 24. UAG Applications • An "application" for UAG is a collection of settings and rules that determine how UAG publishes a certain internal website or application
  • 25. Types Of Applications • Over 40 «templates» – Built-in services – Web (applications) – Client/Server and Legacy • Remote Network Access -> Full VPN – Browser-embedded • XenApp – Terminal Services and Remote Desktop
  • 26. HAT and AAM • Host Address Translation (HAT) to publish internal servers with no FQDN resolvable on the external networks – Publish multiple servers from within the organization, all on a single IP and port • SharePoint has a feature called Alternate Access Mappings (AAM) that modifies the URLs before they are sent to UAG
  • 27. Portal And Direct connection Portal Direct connection We are able to create a We can publish a web Applications will be web portal to act as a application with a public published in the portal gateway FQDN
  • 28. Authentication Repository External users are authenticated against a variety of authentication directories
  • 32. Publishing Exchange • Outlook Web App • Outlook Anywhere(RPC-over-HTTPS) • ActiveSync • Configure Exchange publishing : – As a normal application – Directly during the process of creating a trunk (Create Trunk Wizard)
  • 33. Remote Connectivity • Network Connector – Listens and tunnels ALL traffic into the internal network • Secure Socket Tunneling Protocol – SSTP is a Windows Server feature that is new to Windows Server 2008 – On the client side, the SSTP "client" is also built-in – UAG adds clients auto configuration • DirectAccess
  • 34. Publishing remote network access with SSTP DEMO
  • 35. Remote Desktop • Configure the RemoteApp on your Terminal Server RemoteApp • Export the RemoteApp configuration as a TSPUB • Make it available to UAG Remote Desktop (Predefined) Remote Desktop (User Defined)
  • 36. Publishing File Access and Local Drive Mapping applications DEMO
  • 37. Client Components • The UAG client components are automatically installed on computer that connects to the UAG portal : – Endpoint detection – They contain the SSL tunneling components – Endpoint Session Cleanup component, which cleans up the user's system after a session has ended
  • 38. Q&A Tutto il nateriale di questa sessione su http://www.communitydays.it/ #CDays13

Editor's Notes

  1. Inserite l’eventuale vostro logo in basso a destra
  2. Slide da mostrare prima di iniziare la sessione – non rimuovere!
  3. Ultima slide, obbligatoria