Manage MSN access with ISA 2006
Posted on 2007-08-01
I'm having trouble configuring my ISA 2006 standard to only allow MSN usage outside work-hours to a specific group, while allowing full MSN access to a second group.
What I need is the following: "Non MSN users" should only have access to MSN on hours that are not Work Hours, they can have HTTP and HTTPS access all the time.
The remaining users should have access to MSN, HTTP and HTTPS all the time.
I have two groups: All users and Non MSN users.
I tried creating a rule that would allow HTTP and HTTPS access to the Non MSN users, while blocking the messenger signatures, and with the condition of "work hours", but for some reason they never have access to the Internet when this rule is enabled...
I have a second rule that applies to all users after this one, that allows access to HTTP,HTTPS and no signature blocking, my idea was that the users that are not explicitly referred in the previous rule would have full access, but for some reason the "non msn users" are completely blocked with the previous rule.
I'm not sure I'm making some logical error with these rules or if this yet again, some bug from ISA server.
Do you see anything wrong with these rules, or would you do this differently?