ISA Server / TS Web / TS Gateway
Hi All,
I have a setup with TSWeb pubished via ISA Server 2006. The connections go through a TS Gateway to a number of servers, some of them 2003 and some 2008.
The setup works just fine... But at the moment when my users type there UN and PWD in the ISA HTML form and then have to type it again to authentication to the TS Gateway when they choose the server.
ISA has already authenticated them and therefore I am hoping that there is a way for ISA to push these details to the TS Gateway so that the users have one place that they have to type their UN and PWD on and then thats it..
I am sure that I have seen somewhere that is possible, but can't figure out how to do it or find a guide on it...
Does anybody have any ideas?
Thanks,
I have a setup with TSWeb pubished via ISA Server 2006. The connections go through a TS Gateway to a number of servers, some of them 2003 and some 2008.
The setup works just fine... But at the moment when my users type there UN and PWD in the ISA HTML form and then have to type it again to authentication to the TS Gateway when they choose the server.
ISA has already authenticated them and therefore I am hoping that there is a way for ISA to push these details to the TS Gateway so that the users have one place that they have to type their UN and PWD on and then thats it..
I am sure that I have seen somewhere that is possible, but can't figure out how to do it or find a guide on it...
Does anybody have any ideas?
Thanks,
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I think basicly you don't have to use ISA with TS Gateway, without worring about security,you can allow only RDP ports for it,
ASKER
@keith - Thanks for this, I will need to fiddle around with this and get SSO working, but from what you are saying ISA should be able to take the creditionals of the authenticated user and pass them to the GW for authentication.
@fryezz - I am not sure quite what you are saying, ISA is fronting a TS web install that connects via a TS GW, there are no RDP ports shown publically only port 443.
@fryezz - I am not sure quite what you are saying, ISA is fronting a TS web install that connects via a TS GW, there are no RDP ports shown publically only port 443.
If you can get the SSO to work thats great - it can be fiddly sometimes. Else, change it to https tunneling so the 443 traffic basically passes through ISA direct to the TS box.
ASKER
I have managed to get SSO working on for remote Apps but I would like it to work as well for the "free hand page" where you can can choose which RD Server you want to connect to...
Does anybody know if this is possible...?
Thanks
Does anybody know if this is possible...?
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.