We have a Windows 2003 domain of about 100 users and use ISA 2004 as a proxy server. We are about to add about twenty laptop users who will frequently need to access the internet from outdside the office network. Company policy states that all laptop users must log onto the domain even when out of the office (using cahced credentials), all of them are set up for DHCP. The problem is that a group policy is applied to all machines to apply the internet explorer proxy settings that are used in the office. We do not want users changing any settings on their machines (they all have standard user level accounts - none of them are even power users). How do we ensure the machines are able to access the internet as standalone PC's through their default gateway (logged onto the domain with cached credentials) while out of the office but through the ISA proxy when on the office LAN? We don't want to set for autodetect of proxy server because most of the users are company directors (you know what they can be like!) and they complain that it takes too long to connect when we do.