I'm the stages of VPN implementation in my company with ISA Server 2004, and I have a few remote users that are not members of my domain... what would you reccomend?
1. Make a subordinate CA accessible to them
-or-
2. Allow both PPTP and L2TP, so they can log in, get issued a certificate, and then have them switch over to L2TP. Fortunately, this would only have to be done once, and I'll prolly use CMAK to make the connections automatically.
-or-
3. Generate a cert on my end and send them it (although this may be tough as I don't have the names of their machines... poor documentation before I came aboard).
1. Make a subordinate CA accessible to them
-or-
2. Allow both PPTP and L2TP, so they can log in, get issued a certificate, and then have them switch over to L2TP. Fortunately, this would only have to be done once, and I'll prolly use CMAK to make the connections automatically.
-or-
3. Generate a cert on my end and send them it (although this may be tough as I don't have the names of their machines... poor documentation before I came aboard).