User can not surf over ISA2004 as Proxy-Server

Posted on 2008-11-20
Last Modified: 2012-05-05
One of our users is not able to surf over our ISA2004-Server which is configured as internal proxy-server. When the user starts the Internet-Explorer, he is prompted to enter username and password. Normally the username/password is automatically transfered to the isa-server. When the user enters the correct username and password, the isa-server does not accept them.

If I enter the credentilas of another user on the same computer, everything works fine.

In the securitylog of the ISA-Server the following event is logged:

Ereignistyp:      Fehlerüberw.
Ereignisquelle:      Security
Ereigniskategorie:      An-/Abmeldung
Ereigniskennung:      529
Datum:            20.11.2008
Zeit:            15:10:30
Benutzer:            NT-AUTORITÄT\SYSTEM
Computer:      SERVER-PROXY
Fehlgeschlagene Anmeldung:
       Grund:            Unbekannter Benutzername oder falsches Kennwort (unknown username and password)
       Benutzername:      `F+ 
       Domäne:            lra-deg.local
       Anmeldetyp:      3
       Anmeldevorgang:      Advapi  
       Authentifizierungspaket:      Negotiate
       Name der Arbeitsstation:      SERVER-PROXY
       Aufruferbenutzername:      NETZWERKDIENST
       Aufruferdomäne:      NT-AUTORITÄT
       Aufruferanmeldekennung:      (0x0,0x3E4)
       Aufruferprozesskennung:      2332
       Übertragene Dienste:      -
       Quellnetzwerkadresse:      -
       Quellport:      -

It seems like the username and password are not transfered to the isa-server correctly.

Only one user in our network has this problem. We already reinstalled the pc the user uses without success.

What can be the reason for this authentication problem ?

Kind regards,


Question by:schedlbauerm
    LVL 51

    Accepted Solution

    A couple of possibilities.

    1. the user account is not in the allowed AD group
    2. the user is also in a denied group


    Expert Comment

    I'm having the exact same problem here, first saw this last summer.
    Now it keeps happening at random time for some users.

    The username seems to be corrupted while passed to the ISA Server.

    ISA Server 2004, SP3, 4.0.2167.887

    I've attached a screenshot of the EventID 529.

    This is also happening on a Windows 2003 Terminal Server, Internet Explorer 7, with ISA Client 4.0.3442.654).

    As a workaround, a group have been created that can bypass the ISA and it works, but I really need to have authentication working for the few user having the problem.  It seems to be intermittent.


    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Join & Write a Comment

    Forefront is the brand name for Microsoft's major security product. Forefront covers a number of specific security areas and has 'swallowed' a number of applications under this umbrella including Antigen, ISA Server, the Integrated Access Gateway (t…
    Microsoft has released remote PowerShell capabilities to all commercial Office 365 customers. So you can be controlled via PowerShell and not from the Office 365 admin center Download Windows PowerShell Module for Lync Online http://www.micros…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…
    Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now