Solved

ISA 2006 access to Sharepoint

Posted on 2011-03-16
2
598 Views
Last Modified: 2012-05-11
We're considering using our internal 2007 Sharepoint server to allow external subcontractors to upload/download files via ISA server 2006.  I'm assuming they will have a section of our Sharepoint site exclusive to their use and it can be configured such that they will not have access to our internal sharepoint files, some of which are very confidential.  That in itself makes me uneasy but for this topic that may be beside the point.   I'm not sure if I should as this in the ISA group or the Sharepoint group, but I suspect ISA guru's have experience with the Sharepoint wizard and have some knowledge of Sharepoint.

We have not yet configured ISA to allow corporate AD users to access it yet and I'm just starting to look at the Sharepoint wizard in ISA2006 to do that.  Obviously we'll need an SSL cert mapped to a web listener, maybe with NTLM Authentication.  My main question is how to we configure ISA and Sharepoint to allow external access to both our corporate AD users and two groups of external contractors to our internal Sharepoint site via ISA 2006?  Currently, internal AD corp users can access the site and are authenticate via their AD credentials.  I had considered creating two local groups (contractor group a, contractor group b, for example) on the Sharepoint server and creating local users to assign to those two local groups, then use Integrated Windows Authentication to prompt for username/password allow those two contractor groups to access their individual sections of the Sharepoint site.  And maybe the corp AD users would also have to enter their corp username/password.  But I don't know how that would work with ISA authentication and external AD corp users thrown in the mix..  Sorry if I'm not explaining this properly.  Your responses might help me frame this question better.  I had read something about alternate access mappings in Sharepoint here:
http://sharepoint.microsoft.com/blog/Pages/BlogPost.aspx?PageType=4&ListId={72C1C85B-1D2D-4A4A-90DE-CA74A7808184}&pID=804

I'm not the Sharepoint admin but I am the ISA and network admin working with the Sharepoint admin to see if there is a way to implement this.  

Thanks for any help,

Bruce
0
Comment
Question by:braymond
2 Comments
 
LVL 29

Accepted Solution

by:
pwindell earned 500 total points
ID: 35156886
All ISA does it make Sharepoint available.  It does not control anything beyond that.

Sharepoint is where the control is at,...meaning you have to ask Sharepoint Experts on how to deal with Sharepoint.

ISA already has Wizards for Publishing Sharepoint,...just use them.
0
 

Author Closing Comment

by:braymond
ID: 35176684
The suggested solution was only slightly helplful.   All of the following helped me:

Deploying Office SharePoint Server 2007 with ISA Server 2006
http://technet.microsoft.com/en-us/library/cc268368.aspWhat are ISA 2006 Firewall Web Publishing

Rules and Why Do We Like Them?
http://www.isaserver.org/tutorials/ISA-2006-Firewall-Web-Publishing-Rules.html

Plan alternate access mappings (Office SharePoint Server)
http://technet.microsoft.com/en-us/library/cc261814(office.12).aspx
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In all versions of ISA Server and the current version of FTMG, the default https protocol uses TCP port 443 and 563 only. This cannot be changed within the ISA or FTMG GUI and must be completed from a Windows cmd prompt on the ISA Server itself. …
So the following errors occurs in 2 ways that I am aware of at this stage, and you receive one of the following error messages: ERROR 1. When trying to save a rule: No Web listener is specified for the Web publishing rule Autodiscovery Publishin…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question