Hi,
I need to enable Office 365 partnership with the below caveats.
- passive profile should be protected by two factor RSA auth scheme - simple enough. I protect redirect.jsp with the RSA auth scheme
- Active profile, Outlook and Lync should be able to connect only from a machine that has a particular certificate installed. So I need the STS to be able to deny requests if a particular certificate isn't present.
Is the second requirement possible?
Regards,
Anand.