Solved

ISA 2006 vs Forefront

Posted on 2009-03-31
3
673 Views
Last Modified: 2012-05-06
I am in the middle of transitioning a SBS 2000 computer to 2 - Windows 2008 server's 64-bit, both are domain controllers.  I also have a Windows 2003 r2 machine in the same domain that is also a domain controller.  When I purchased all of the software, my rep sold me ISA 2006 knowing I was migrating to 64-bit servers.  

If I had to load ISA 2006 on the Windows 2003 Server, how would I have to configure the network?  Would the Windows 2003 server need to be the point of entry?  Would I be better off going to Forefront and what version or configuration.

Thanks for any suggestions
Debbie Hamatani
0
Comment
Question by:DebbieHamatani
  • 2
3 Comments
 
LVL 3

Expert Comment

by:rmmustafa
ID: 24036308
Forefront is not finally released yet ,,, So forget it , ISA 2006  should be installed on 2003  32 bit OS (Stand alone server and it is not supported on Win 2008 or any 64 bit editions  ) , and all other servers (domain controllers ) could be 2008  64bit editions ,, It is not recommended for the ISA to be on a domain controller (it will be difficult to control the ISA itself access roles to allow usual domain traffic like user validations and so on )
You have two options for sitting up the ISA server , either as a members server  stand alone server where it will be a domain member , and on this case it will be possible for the ISA to read users from AD (even if its 2008 server ) and creating rules according to it ) , and the other option is to keep it on the edge of your network  not as a domain member  and on this case you will not be able to create any role according to AD users (you may create other type of roles ) ,,,,
Another option is available regarding to the DHCP if you are using it ,,, if you wish to maintain Internet connectivity if your domain is down ( all domain controllers are down ) you may install the DHCP on the ISA server (if you chose the second option because you wont be asked to authorize it  but if the ISA was a domain member then you have to authorize the DHCP on the domain and it will not function if the domain controllers were down ).
0
 

Author Comment

by:DebbieHamatani
ID: 24037977
Hi rmmustafa --

I have a Windows 2003 r2 machine that is a domain controller, but really only is my print server.  If I were to demote this server and load ISA I would be fine?

Thanks
0
 
LVL 3

Accepted Solution

by:
rmmustafa earned 250 total points
ID: 24048163
The major role is Do not install ISA on a domain controller , and it can live with Windows 2008 servers , so it looks good idea to demote one of the domain controllers and install ISA on it , if your have the original Windows server CD and license on hand then it might be better to start with clean installation , update it and start the ISA installation .
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Forefront is the brand name for Microsoft's major security product. Forefront covers a number of specific security areas and has 'swallowed' a number of applications under this umbrella including Antigen, ISA Server, the Integrated Access Gateway (t…
There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now