http://www.ISAserver.org ------------------------------------------------------- Maybe my question is not clear I currently use sbs 2000 certificate services I use the computer certificate on isa2004 for vpn connections. I can use this certificate with owa as long as the client machine has their computer certificate no problem. I can connect to owa ssl internally using computername.domain.com. I can also connect ssl remotely using isacomputername.domain.com all works well for computers that are members of my internal domain of have the correct certificate installed I also would like to have remote users on Macintosh's connect to the exchange box using OWA with entourage. So can I purchase a certificate and one with what I calling a public root for my domain and still use the existing vpn certificate simultaneously? Thanks Jim -----Original Message----- From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] Sent: Monday, August 14, 2006 10:45 AM To: isalist@xxxxxxxxxxxxx Subject: [isalist] Re: L2TP http://www.ISAserver.org ------------------------------------------------------- Trusted root cert is irrelevant. The certificate installed on ISA must have been issued for IPSec encryption and server authentication. ------------------------------------------------------- Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/Jim_Harrison/ http://isatools.org Read the help / books / articles! ------------------------------------------------------- -----Original Message----- From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-bounce@xxxxxxxxxxxxx] On Behalf Of James May Sent: Monday, August 14, 2006 10:36 To: isalist@xxxxxxxxxxxxx Subject: [isalist] L2TP I have isa 2004 can you tell me if I purchase a trusted root certificate for ssl owa will I still be able to run the L2TP ip/sec tunnel with the ssl certificate installed on the firewall or will I have to publish the exchange server? Jim May Defense Group Inc Santa Monica, CA 90401 jmay@xxxxxxxxxx All mail to and from this domain is GFI-scanned. ------------------------------------------------------ List Archives: //www.freelists.org/archives/isalist/ ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server Articles and Tutorials: http://www.isaserver.org/articles_tutorials/ ISA Server Blogs: http://blogs.isaserver.org/ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ To unsubscribe visit http://www.isaserver.org/pages/isalist.asp Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: //www.freelists.org/archives/isalist/ ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server Articles and Tutorials: http://www.isaserver.org/articles_tutorials/ ISA Server Blogs: http://blogs.isaserver.org/ ------------------------------------------------------ Visit TechGenix.com for more information about our other sites: http://www.techgenix.com ------------------------------------------------------ To unsubscribe visit http://www.isaserver.org/pages/isalist.asp Report abuse to listadmin@xxxxxxxxxxxxx