Macs, Windows Server 2003 domains, ISA, Surf Control and bears...OH MY!

Posted on 2007-08-01
Medium Priority
Last Modified: 2012-08-14
How are you guys handling Macs on a Windows domain?  

Our primary network at the school/church is a Windows Server 2003 domain with ISA 2004 and Surf Control.  We install the MS firewall client on all of the PCs.  No one can access the network or surf the web w/out joining the domain and w/out the firewall client installed on the PC.

Now, along comes all the Mac users!

I can get them out to the internet by putting our ISA proxy settings and the user's credentials into Safari and Entourage works well enough on our exchange server.  Where I'm having some confusion is the best way to access mapped/shared drives on the network (they don't reconnect when the mac users reboots), and how to get them thru ISA/Surf Control the best way.

In ISA, I created my first rule and I just allow the Macs out based on their IP.  Since they don't send authentication because they don't have the MS Firewall client, that's the only way I knew of to allow them to surf the web.  After that, Surf Control still controls the content.

So, my question is general in that I'm looking for feedback, tips, tricks, etc for using Macs in a Windows Server 2003 domain with ISA 2004 and Surf Control.


Question by:crp0499
LVL 51

Accepted Solution

Keith Alabaster earned 2000 total points
ID: 19611872
Hey Cliff. If it has ISA in the mix I'll give it a go.

As far as Shares are concerned, we'll need additional help.

getting them onto the Internet i easier but limited. MAC users cannot authenticat to the ISA server because they do not carry the credentials information in the same way that Windows clients do. In addition, they cannot run the ISA Firewall Client either.

Only option avilable is to use the MACs as SecureNAT clients making sure their default gteways point at the ISA box. As you already know this there is not much I can add.

Expert Comment

ID: 19615388
Hi Cliff,

Have a look at this:- http://www.macwindows.com/Win2003.html

I've used that site for a couple of years now, very useful :)
I don't need the points btw as I'm a paying user anyway, just giving some help here.
LVL 31

Expert Comment

ID: 19623383
LVL 51

Expert Comment

by:Keith Alabaster
ID: 19856221
How did you get on Cliff?

Author Comment

ID: 19873727
Please leave this open a bit longer.  School just started and I'm swamped!  It is still an issue but I have yet to get back to it.  I expect to have it resolved within 14 days.

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Steve Jobs once said that Blu-ray is "a bag of hurt". As Macs users well known, things haven’t settled down (at least not from Apple’s perspective). Several years after that comment, Mac OS X still doesn’t support Blu-ray playback, nor has any Mac s…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question