We're running single SharePoint 2007 farm which is public facing. We use it as the Intranet as well as the Extranet - client portal. I like to get the advise on cost effective way to enhance security on the public network access level. The security setup we currently have are: Only port 443 open to the Internet - 2048 bits certFor clients access, we create non-domain AD accounts for them to authenticateEach client is only authorized to her only Document library folderBasic practice on hardening the SharePoint server itself My current concern is our clients might not have the confidence using our portal with SSL as the only security measure. I have also read the "Extranet Topologies for SharePoint 2010" from MS site. I like the simple solution to put UAG at the perimeter, but UAG is just too much to spend for us right now.I have also thought about using SSL VPN from our existing SonicWall instead of UAG. What's your suggestion so that we will continue having the convenience for client and internal user to access our site by poping up the browser but in a more secure way. Thanks Calvin