Currently we have Microsoft Active Directory Small Business Server, and use Microsoft ISA server for our firewall. What I like about ISA is the ability to permit or deny internet access based on Active Directory group membership(s).
I would like to replace our ISA server with a stand alone firewall appliance (Cisco ASA, CheckPoint, Sonicwalll, or Juniper).
Does anyone know if the stand alone firewalls (mentioned above) can permit or deny internet access based on Active Directory group membership? Or perhaps there is software out that that can act as an intermediary between the stand alone firewall and Active Directory?