Authentication in ISA 2006

Posted on 2008-11-11
Last Modified: 2012-06-27

This should be an easy enough question but for some reason I can't figure it out.  Anyway, I've installed ISA on a member server (although to install ISA I had to remove the server from the domain, install it, then rejoin the domain).  All is working fine except in the log all client usernames show up as anonymous.  I changed the rules so as they only allowed authenticated users, rather than all users but that just blocked all requests, the log showing because the user was anonymous

I've installed the Firewall Client on my machine but that didn't do anythign to help this particular problem.  How do I set it so that the clients authenticate?

Try make the answer sound a little difficult so I don't seem so stupid :)

Thanks for your help.
Question by:lee_murphy

    Author Comment

    Just noticed something else, when I opened uTorrent, which is blocked, all the denied logs had a username lee.murphy, although it had a (?) after it.  But the web requests are still anonymous.
    LVL 1

    Expert Comment

    You don't have to remove the server from the domain when installing ISA server. Maybe this is the origin of your problem.
    LVL 1

    Accepted Solution

    Also, i'm not to use authenticate user is the best way. Why aren't you using an ISA object user group YourCompanyNameUsers where you add the User Domain group of your Active Directory in it.

    Finally, you will always find anonymous username in the logs, in general the client 1st try to not authenticate and then give the credentials once it got the access denied from ISA.

    Author Comment

    Hi Nicolas,  I had to remove it fromt he domain because as a member server I was getting the error "Setup failed while creating ISA Server storage" during install, then install would fail. I googled the error and pretty much everyone was saying, remove the server from the domain, install ISA, rejoin the domain.  I did that and it "seemed" to work.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    Suggested Solutions

    There are three types of ISA client that can be configured - these can be individual clients or multiples of a client on each PC or server SecureNAT. A SecureNAT client for ISA server is a client machine, work station or server, that has its defa…
    Common practice undertaken by most system administrators is to document the configurations and final solutions of anything performed by them for their future use and reference. So here I am going to explain how to export ISA Server 2004 Firewall pol…
    Need more eyes on your posted question? Go ahead and follow the quick steps in this video to learn how to Request Attention to your question. *Log into your Experts Exchange account *Find the question you want to Request Attention for *Go to the e…
    This video is in connection to the article "The case of a missing mobile phone (". It will help one to understand clearly the steps to track a lost android phone.

    732 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now