0

I’ve got a customer that is currently using Lotus Notes, and they’ll be migrating off Notes to Exchange + Outlook (for the email/messaging part) and SharePoint 2010 (for the documentation repository functionality of Notes). Currently their security policy mandates for strong authentication to access the email and “intranet” – and given that all that is on the Notes platform, they consider they have 2FA, as any user needs 2 things to access: the “id” (certificate) file, and a password.

The security architects want to preserve that security in the future setup. Protecting the access to SharePoint is not too hard (web app, so there are plenty of options). There is work to be done there yet, but what really worries them at the moment is the “Heavy Outlook” access… is it possible to ask for 2FA when we launch the client? Or do they have to resort to something like an internal firewall that blocks access until authentication has taken place?

Any and all ideas, no matter how “crazy” might seem, are more than welcome.

Thanks a lot

Javier

JJarava
  • 167
  • 2
  • 9
  • Are you using two factor authentication to login to the AD domain? Or is this for external users who are not using computers which are domain members? I believe there are lots of options for two factor authentication to a domain. – Zoredache Jan 26 '11 at 23:23
  • For 2FA into the Windows sessions, nowadays there is little more than certificate based auth (which the customer is considering) What I'd like to see s if there is something to protect the "Outlook client" when the user opens the application (ideally) or when the client tries to access the Exchange Server... – JJarava Jan 31 '11 at 13:38
  • How are you integrating SharePoint 2010 and Outlook 2007. Personally It would be more likely to integrate it with Exchange 2010 then SharePoint 2010? Word and Excel are better candidates to access SharePoint 2010, also PowerPoint and Access. – Guido van Brakel Mar 07 '11 at 13:54
  • @shadowman12: Sorry, I should've been more clear: They're replacing Notes with Outlook+Excange for the email functionalty, and with SP for the "intranet-document repository" side of Notes. Hope this makes more sense... – JJarava Apr 07 '11 at 09:37

1 Answers1

0

This depends a lot of what kind of security level the security architects in your company want, so this question is really hard to answer. But you can make Exchange 2010 with Outlook as secure as you want. Also you can secure SharePoint 2010 quite good, but again that depends on the level of security your security architects would like to see.

Guido van Brakel
  • 942
  • 5
  • 10