|
Exchange 2003 Mobile Security Enhancements
Exchange 2003 Mobile Security Enhancements & migration
Exchange 2003 Migration Consultant also used the enhanced security features for OWA offered in Exchange 2003 for its front-end server deployment, such as time-based logoff and forms-based authentication. Unlike OWA under Exchange 2000, a secure, HTML forms-based, authentication screen appears when a user navigates to a front-end server instead of an NTLM-based dialog box. In addition to logon credentials, the form asks two additional questions:
1. Is the user logging on from a public kiosk/shared computer or from a private home computer?
2. Does the user want to use basic or premium OWA user interface (UI) feature sets? (The answer typically depends on whether the connection is a fast or a slow data link.)
All of the UI elements displayed in the OWA logon page are customizable, enabling the inclusion of company logos, specific URLs to regional front-end servers, custom usage instruction text, and more. Exchange 2003 Migration Consultant created its customized OWA page using these features.
Once the form has been filled out and the user clicks Log On, the data is encapsulated and sent by means of an SSL connection to the front-end server specified by the user when they navigated to the specific server to bring up the authentication form. Once the logon credentials have been sent over the Web, a special time-out cookie is created on the local client computer. Depending upon whether the user indicated the client is a public or private computer, the time-out cookie starts counting up to a threshold of inactivity. Once that threshold is met with no activity having taken place for that duration, the session connection is automatically closed, and requires reauthentication if the user wants to regain access to the Exchange mailbox. Exchange 2003 Migration Consultant configured the time-out cookie to close out inactive sessions on public or shared computers after 15 minutes, whereas inactive sessions on a user’s private home computer were configured to last for two hours of inactivity before closing. The session time-out periods are enterprise customizable to meet any security requirements.
In order to provide an additional level of security, Exchange 2003 Migration Consultant chose to deploy Internet Security and Acceleration (ISA) servers to act as the reverse proxy for all Exchange front-end servers. This allowed the front-end servers for Exchange 2003 to be placed behind the firewall, safely within the corporate network, no longer directly connected to the Internet.
Outsourcing Exchange Spam FilerOutsourcing Exchange Spam Filer Using a good exchange spam filter will get your users working Exchange 2000 spam filter is a .....
|
