Does any know if it's possible to allow ONLY domain joined machines to use Outlook Anywhere and Exchange 2007.. I understand this may be possible with UAG and endpoint security, but we have no interest in deploying UAG right now. Thanks!

if no more questions on this thread, we may mark it as answered. Thanks.Fiona Liao TechNet Community Support

How would IP4 restrictions be feasible?Wouldn't you always need to know the public IPs the clients are connected from?

See this similar post: http://social.technet.microsoft.com/Forums/pl-PL/exchange2010/thread/d2133146-6d0e-4ff8-a626-441902cbd262 Mike Crowley | MVP My Blog -- Planet Technologies

Thanks.. we are not interested in TMG/UAG right now though.. I think we might be stuck until we can deploy something with IPSEC security at the computer level.

Right, I'd suggest IPSEC, or perhaps don't deploy OA to the internet at all. Require users to VPN. Then issue the VPN client only to domain-joined machines. Mike Crowley | MVP My Blog -- Planet Technologies