I am a technician at an educational institute that has been put in charge of an issue that we a currently have in regards to web authentication. We have just recently upgraded to ISA 2006 from ISA 2004 and we are running it on a DL320 with windows 2003 server. Some of our users are experiencing an authentication issue where the ISA continues to ask them for credentials for each item that loads on a page.
I found the identical symptom at http://support.microsoft.com/kb/886996 however, it did not offer a solution to solving the problem if the site is an external site and not one published by you.
How do I get ISA to quit asking the user for authentication to the external website?
There is a registry entry that is something like ReturnAuthIfAuthenticated that will fixed this problem. Looks through my blog postings from the last month or so and you will find it.
Hello Tom, Thanks for you post. I had a look at your blog back to January 2007 and could only find one article related to authentication. It was "Getting Prompted for Authentication When You Enable Firewall Client and Web Proxy Client Autodiscovery?". I went to the related Microsoft link and it did not relate to the problem I had posted. Am I looking in the wrong place?
I am new to this forum and i need your help. As per the reply by cameron i could not find any microsoft link or any thing related in january 2007 blog to solve my "authentication problem". kindly assist
We are running ISA 2006 and we do not use an ISA client. Do you think that fix will still work? The fix says that modifying your registry can cause irreparable damage so I am being cautious.
Kind regards, Cameron Mottus, B.Ed, A+, LPIC-1 IT Systems Engineer
_____________________________
Kind Regards, Cameron Mottus, IT Systems Engineer Practical Education Institute
1.- DNS from Internal to External (all users) 2.- POP3 and SMTP from Internal to External (group called MailUsers) 3.- HTTP and HTTPS from Internal to External (group called WebUsers)
I saved my current firewall policies and I run the network template again and selected Edge firewall and "Allow limited Web access, allow ISP network services" instead "Block all".
Now users can see videos but credentials aren't asked
That is good! Since the ISA Firewall is a domain member and and the clients are configured as Web proxy and Firewall clients, you don't want to ask for credentails.
Create an "all open" rule that applies only to authenticated users and put that above the rule the template created.
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [ISA 2006 Firewall] >> General >> Problems authenticating to external websites through ISA 2006 
Problems authenticating to external websites through IS... - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread