Basically the question is: what do I replace our ISA 2006 with?
We are upgrading from ISA 2006 in front of SharePoint 2007. We have a combined intranet/extranet, all users are in our AD. Users on the corporate network go directly to the webserver via windows authentication. Users outside the network or working from home go though the ISA server via a form. (the main purpose of the form is to tell people what to do, who to contact if things go wrong, etc. The local users are already logged in via their PCs so they don't need this).
We are upgrading to SharePoint 2013. They want to keep a form for the external users. SharePoint 2013 and our SQL 2012 is all running on Server 2012.
At first I thought I could use FBA authenticating against AD, but I've read it's the wrong approach and will cause problems for Office 2013, and that we should go the ISA route again.
It seems like TMG is going away, and I certainly want to get off ISA 2006. Would you recommend UAG? I've read it's not the best for this purpose especially with the 2013 applications coming out. The firewall will mostly be for our intra/extranet, and not used for other systems, though we MIGHT host Office Web Apps, we don't currently but are thinking about it for our extranet users. We have a completely separate firewall so the firewall aspects are not really as important as being able to have a form based login that also will allow the users to seamlessly use Office and SharePoint 2013 together.
thanks for your input.