TMG Web publishing for SharePoint HTTPS, No Certificate Usage On TMG
This question came up with a client this morning, which is the first time I have had to answer it but it’s a very straightforward issue.
What if one is trying to use TMG to publish a SharePoint environment for both HTTP and HTTP access, while the certificate is appropriately setup in the SharePoint server it is not desirable to have the web publishing rule bound to the certificate, i.e. certificate stuff should be handled by the SharePoint environment. So, breaking the question down even more, they wanted to publish the HTTPS SharePoint instance WITHOUT using the certificate in the TMG instance.
This obviously is not a supported route, because logically it doesn’t make a ton of sense. One can’t use a HTTP web publishing rule without having the appropriate certificate accessibly and appropriately in place, and clearly is not a TMG limitation because it is the same requirement for ISA and Proxy Server stuff.
One Comment
Trackbacks/Pingbacks
- ARB Security Solutions » TMG Web publishing for SharePoint HTTPS … - [...] RSS feed for comments on this post. TrackBack URL [...]
Leave a Reply
Articles & Research
-
SharePoint Security -
SharePoint Development -
SharePoint Architecture -
Claims Authentication -
Forefront For SharePoint -
AIS / Dynamics GP -
Team Foundation Server -
Pex And Moles -
ISA/TMG/IAG/UAG -
DPM -
Cardspace -
Research Methodology -
Rural ICT Development -
Numerical Analysis -
Multi-Level Research -
Knowledge Management -
Personal/Off-Topic
Latests SharePoint Development Posts
- SharePoint 2013 High Availability And Business Continuity
- Designing Global (WAN) SharePoint 2013 Environments Part 2
- Designing Global (WAN) SharePoint 2013 Environments Part 1
- Using Information Policies In SharePoint 2013
- Information Policy Management In SharePoint 2013
- Co-authoring In SharePoint 2013
Latests SharePoint Security Posts
- Security In Business Connectivity Services In SharePoint 2013
- Planning Security When Migrating To SharePoint
- User Profile Database Architecture In SharePoint 2013
- Why Use User Profiles In SharePoint 2013
- SharePoint 2013 Planning User Profile Synchronization With Directory Services (AD DS,Novell, SJSDS)
- SharePoint 2013 User Profile Property Mapping And Synchronizing Groups
Actually you can get away without a certificate however it wont be web publishing but server publishing. When using server publishing the tunnel is made between the [published server and the client hence there is no cert requirement on TMG but there wont be any inspection as well.