Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Force Users to Authenticate for Internet Access
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Force Users to Authenticate for Internet Access - 4.Jul.2008 9:03:00 AM
|
|
|
PeteSt
Posts: 15
Joined: 20.Mar.2007
Status: offline
|
Hi all,
Sorry if this has been covered already, and the subject is probably misleading, so I will explain the issue fully.
I have some users who have to logon to the domain with a generic user ID, (a user account that many users share), for using some legacy applications, and they can access the Internet via the ISA 2006 server, however we cannot track the internet usage for the individual users. I am also going to implement a websense policy, to block sites, and allow some sites on a time limit, which also raises problems with generic user ID's.
What I am hoping is that I can somehow force these users to re-authenticate when they try to acess the Internet via the ISA 2006 server..?
I know that using generic ID's is evil and should be banned, and I have said that much already, however the company are very reluctant to go down the road of setting up new user ID's, and tweak the applications, so I am trying to find other options.
Any advice much appreciated.
Pete
|
|
|
|
|
RE: Force Users to Authenticate for Internet Access - 4.Jul.2008 9:35:59 AM
|
|
|
paulo.oliveira
Posts: 727
Joined: 3.Jan.2008
From: Amazonas, Brazil
Status: online
|
Hi Pete,
quote:
I have some users who have to logon to the domain with a generic user ID, (a user account that many users share)...
quote:
What I am hoping is that I can somehow force these users to re-authenticate when they try to acess the Internet via the ISA 2006 server..?
How this would be usefull? Are going to create login accounts for each of these users?
As long as I know, ISA canīt do it.
My advice for you is convince your people to change this generic login setting.
Regards,
Paulo Oliveira.
|
|
|
|
|
RE: Force Users to Authenticate for Internet Access - 6.Jul.2008 3:56:13 AM
|
|
|
elmajdal
Posts: 5024
Joined: 16.Sep.2004
From: Lebanese in Kuwait
Status: online
|
Hi,
In the Internal Network Properties, set the authentication to be Basic instead of Integrated.
HTH,
Tarek
_____________________________
Tarek Majdalani
MS Forefront Edge Security MVP
Website : http://www.elmajdal.net/ISAServer
New Section : http://www.elmajdal.net/Win2k8
|
|
|
|
|
RE: Force Users to Authenticate for Internet Access - 14.Jul.2008 5:05:09 AM
|
|
|
PeteSt
Posts: 15
Joined: 20.Mar.2007
Status: offline
|
Thanks Tarek,
Will this cause a pop up for all users, or hopefully, just the users who do not have permissions, (the generic ID guys), who will then need to authenticate..?
I imagine if I just add Basic authentication, and leave Integrated there as well...then only users who cannot authenticate using integrated method, (not in access rule), they will be prompted for an ID with permissions using Basic authentication..?
Cheers,
Pete
< Message edited by PeteSt -- 14.Jul.2008 5:48:20 AM >
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
