Authentication in ISA 2006


This should be an easy enough question but for some reason I can't figure it out.  Anyway, I've installed ISA on a member server (although to install ISA I had to remove the server from the domain, install it, then rejoin the domain).  All is working fine except in the log all client usernames show up as anonymous.  I changed the rules so as they only allowed authenticated users, rather than all users but that just blocked all requests, the log showing because the user was anonymous

I've installed the Firewall Client on my machine but that didn't do anythign to help this particular problem.  How do I set it so that the clients authenticate?

Try make the answer sound a little difficult so I don't seem so stupid :)

Thanks for your help.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

lee_murphyAuthor Commented:
Just noticed something else, when I opened uTorrent, which is blocked, all the denied logs had a username lee.murphy, although it had a (?) after it.  But the web requests are still anonymous.
You don't have to remove the server from the domain when installing ISA server. Maybe this is the origin of your problem.
Also, i'm not to use authenticate user is the best way. Why aren't you using an ISA object user group YourCompanyNameUsers where you add the User Domain group of your Active Directory in it.

Finally, you will always find anonymous username in the logs, in general the client 1st try to not authenticate and then give the credentials once it got the access denied from ISA.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
lee_murphyAuthor Commented:
Hi Nicolas,  I had to remove it fromt he domain because as a member server I was getting the error "Setup failed while creating ISA Server storage" during install, then install would fail. I googled the error and pretty much everyone was saying, remove the server from the domain, install ISA, rejoin the domain.  I did that and it "seemed" to work.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.