Whitelist based on workstation name for ISA server
Is there a way with ISA 2006 to create a whitelist of sites for specifically named workstations? I work in an environment with back-room and retail operations. Management would like the retail workstations to only have access to whitelist, but when the users work in the backoffice they can access any site.
I obviously cannot filter based on user id since the same user could be logging in on a workstation in the back office or up front.
Any help would be greatly appreciated
I obviously cannot filter based on user id since the same user could be logging in on a workstation in the back office or up front.
Any help would be greatly appreciated
ASKER
Thanks, I'll give this a shot and report back!
ASKER
Keith, it appears that when I want to add a computer it needs to have a static IP address (I assume this since it fills in the IP address) Is my assumption wrong, and that ISA communicates with DHCP to determine when the workstation's IP address changes?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thank you.
Sorry about the typing errors - my kids have dropped 'something' over my keyboard and all the keys keep stickng....
keith
Sorry about the typing errors - my kids have dropped 'something' over my keyboard and all the keys keep stickng....
keith
The rule needs to be above the normal allow outbound rules.
Highlight the firewall policy in te ISA gui.
Select the toolbox on the right-hand side of the screen (if you cannot see it, it may be hidden. Half-way down the right-hnd side of the screen you will see a grab-handle. Click it and the toolbox will open).
In here you can add new entities such as domain sets, url sets, subnet entities and computer objects.
Create a new outbound access rule with the protocols you want then add the URL sets you have created in the TO box and remove the ALL users group and add the computer objects that you have created.