Planning for authentication servers

Microsoft Forefront Threat Management Gateway can use a number of authentication servers to validate client credentials:

Active Directory. Used to authenticate incoming requests for published resources, or outbound requests to the Internet.
LDAP Server. Used to authenticate incoming requests for published resources only.
RADIUS Server. Used to authenticate incoming requests for published resources, or outbound requests to the Internet.
RADIUS OTP. Used to authenticate incoming requests for published resources only.
RSA SecurID. Used to authenticate incoming requests for published resources only.

This section provides information about best practices for planning and configuring authentication servers.

Additional resources