Solved

ISA SERVER 2006

Posted on 2011-09-02
8
195 Views
Last Modified: 2012-05-12
We have an external https url to access, but it need a smart card authentication. I just test this with user without proxy and it´s work well.
I when i try with user that have proxy i receive a failed connection Agent
Error when i monitore by isa the pc
IP->0->SSL-Tunnel->failed Connection Agent-> anonimous
0
Comment
Question by:godinhadas
8 Comments
 
LVL 10

Expert Comment

by:simonlimon
ID: 36480137
So you are accessing an external site, not on your network through a proxy server?

Are you using HTTPS inspection with the TMG or are you using ISA 2006?
0
 

Author Comment

by:godinhadas
ID: 36482703
I am access an external site. this site is important for us to access and we are using  Https inspection with isa 2006
0
 
LVL 10

Expert Comment

by:simonlimon
ID: 36482721
My first suggestion would be to exclude this site from HTTPS inspection.

I would say that HTTPS inspection with client certificates should not work.
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 36482764
adding to that, ISA does not have https capability. only TMG.

as a workaround you can add it as exception on IE proxy exception list.
0
What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

 

Author Comment

by:godinhadas
ID: 36483138
I just try to create a exception but when we try to open the site look for certificate and smart card and doesnt open
0
 
LVL 29

Accepted Solution

by:
pwindell earned 500 total points
ID: 36489061
Smart Card Auth to "what"?  The Site or the Proxy?  You don't get both.  They are two entirely different things.

If the Site is what the Smart Card is for, then it is only going to authenticate to the site,...not the proxy,...you will have to authenticate to the proxy separately.   If you can come up with a way to do that then the proxy will have to be used anonymously for that particular site.
0
 
LVL 6

Expert Comment

by:infoplateform
ID: 36494449
can u share rule with us
0
 

Author Closing Comment

by:godinhadas
ID: 37213109
wqe solve the problem
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
Easy CSR creation in Exchange 2007,2010 and 2013
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now