How to setup ISA Server

Posted on 2008-11-06
Last Modified: 2013-11-16
what is the best way to setup ISA
Question by:joebronco
    LVL 9

    Assisted Solution

    insert the disc, run the installer.

    Seriously though, what do you mean?  

    I normally install it behind a hardware router/firewall.  

    Author Comment

    what is the best way to setup ISA when cisco router and a sonicwal is being used
    LVL 9

    Assisted Solution

    Cisco Router, Sonic Wall, ISA
    LVL 4

    Accepted Solution

    Honestly?  Don't bother, its an awful product

    However, if you must:
    LVL 51

    Assisted Solution

    by:Keith Alabaster
    Joe, I need to understand the question a little more on what you are trying to do here.
    You don't mention any details - what version of SBS and ISA do you have? SBS2000 had ISA2000 - so did SBS2003 unless you had the SBS2003 CD pack from service pack 1 which gave you the CD's for ISA2004 - what have you got?

    The list of equipment, to be frank is overkill. ISA (any version) was the best firewall/application-gateway combination in the world and the version that came with SBS was designed to use all of the inbuilt wizards etc to configure itself with enough basic rules to allow everything to work. ie Companyweb, RWW, OWA etc. However, if you already have a Cisco router & Sonicwall, apart from proxy, I am not sure what ISA will add for you.

    Does your SBS box have one or two nics installed? Are you wanting to use ISA as a proxy/firewall or just proxy?
    As you can see, your brief question does not give a lot to work with.....

    LVL 5

    Assisted Solution

    As everyone has pointed out this is a very vague question.  but if you were going to use ISA for vpn authentication this might help you out.

    you install from add remove programs - windows components.

    in the matching criteria I create a security group and add it. I then add users to it for access to vpn authentication.  I find this easier to manage than applying the settings directly to the user as the document suggests
    LVL 5

    Assisted Solution

    The doc uses old ios as the config example. you might need to be familiar with current IOS to set it up correctly.  I'm sure you've used google before

    make sure you use this command in your tunnel group

    authentication-server-group (aaa-server group name) LOCAL

    this will alow you to use the local database for authentication in the event your ISA server is unavailable to authenticate.  Without the local you will not have vpn access with a down ISA server.  It will not use the local names if there is a server available.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    The SBS 2011 release date (RTM) is supposed to be around Christmas, 2011.  This article is a compilation of my notes -- things I have learned first hand.  The items are in a rather random order, but I think this list covers most of what is new and d…
    This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
    This video is in connection to the article "The case of a missing mobile phone (". It will help one to understand clearly the steps to track a lost android phone.
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now