Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Single sign-on (SSO) and IIS

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> General >> Single sign-on (SSO) and IIS Page: [1]
Login
Message << Older Topic   Newer Topic >>
Single sign-on (SSO) and IIS - 30.Sep.2008 12:48:25 PM   
emailman

 

Posts: 2
Joined: 9.Apr.2008
Status: offline 		I'm testing ISA 2006 Enterprise (trial).  We have users whose machines are not on the Windows 2003 domain but the users themselves have accounts in AD.  They set their browsers to use the ISA server (which is in the domain) as the web proxy.  ISA requires authentication via an enterprise policy configured to allow all authenticated users http/https access to all networks.  This works:  if a user accesses a public internet site, they must authenticate.  I also have an internal IIS server that requires authentication (integrated & basic).  Our goal is single sign-on.  If they access a public site, authenticate with ISA, then within their same browser session they go to the internal IIS site, I don't want it to require reauthentication.  I want ISA to pass the authentication to IIS.  Is this possible?  How??  Does it require publishing the IIS site with a web listener and allowing the ISA server to delegate Kerberos?

Any help is appreciated.


< Message edited by emailman -- 6.Oct.2008 9:57:18 AM >
Post #: 1

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> General >> Single sign-on (SSO) and IIS Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts