• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 877
  • Last Modified:

UAG Configuration for roaming employee access to SharePoint

We would like to improve the roaming access to Juniper VPN for our users out on the road - including making sites available from iPhone and iPad.

We use claims based authentication for our 2 SharePoint web front ends which then go to an F5 before hitting our WAN and domaain.
UAG has been a solution proposed by Microsoft and others and I am  assuming that we would need a windows server stood up in front of the F5 with one network into the F5 and then one network on the public internet.
I guess we probably also need an additional network for management of the UAG.

So UAG server with 3 interfaces
 - Public IP (does this need to be one or two sequential IP addresses and is it best if this is directly on the pubic IP range or should this be behind the firewall with a NAT)

 - Management IP (so we can remote and configure the UAG)

- IP address for UAG to SharePoint (UAG->F5->SharePoint)

Is this the correct way to do this?
Does anyone have any suggestions for vendors with UAG expertese in the Bay Area that could help us with this work?
1 Solution
a.) The external IP can be one or two, depends how the sites are named and the authentication type. As the IP as a HTTP / HTTPS Listener, the general rule is ...
All published sited can use the same IP, as long as they can be seperated by the URL and use the same authentication type.

If you assign an external IP to UAG, you may route the traffic through the F5. If you produce a double NAT, it can produce some interesting effects. But doesn't mean, that is doesn_t work.

2.) If you need a seperate config network, depends from where you want to configure and if it is a stand alone or "clustered" solution with a configuration storage.

3.) The internal IP, either from the internal network or a seperate Network between UAG and Sharepoint.

4.) I'm a bit far away, nevertheless remote works at anytime.

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now