Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
User set authentication (RDA)
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
User set authentication (RDA) - 24.Sep.2008 8:18:11 AM
|
|
|
Mystify
Posts: 2
Joined: 24.Sep.2008
Status: offline
|
OK - I've never used ISA before but have acquired and installed ISA 2006 on a windows 2003 server joined to our company's domain.
Before I implement it fully instead of our cisco firewall I'm trying to work itout.
I have set up 1 network card connected to our internal network and disabled everything so access is denied everywhere.
I have then created 1 rule to allow users on the internal network to remote desktop to the server. This works fine when I set All Users to be allowed. However, I then create a 'User Set' with 2 users in it, me included, both domain admins and use this instead of 'All Users' and it doesn't work when I thought it would.
I'm either horribly wrong with how it all works or I've missed something obvious.
Can anybody help?
< Message edited by Mystify -- 24.Sep.2008 8:56:13 AM >
|
|
|
|
RE: User set authentication (RDA) - 24.Sep.2008 9:01:06 AM
|
|
|
tshinder
Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Whoa!!! All users to RDP to the firewall? You might want to crater the box and start over. You should never create rules that allow connections to the Local Host network. That's a good way to get p0WnD and punked.
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
|
RE: User set authentication (RDA) - 24.Sep.2008 9:03:45 AM
|
|
|
Mystify
Posts: 2
Joined: 24.Sep.2008
Status: offline
|
Hi,
I have no intention of leaving it like that - I'm just trying to learn the rules and how it authenticates. Ideally I want a user set of 2 admins to be able to RDP to the box from the internal network. Once I get this working I can remove 'All Users' but by then I'm hoping I will have worked out how to set up other protocols (http for example) with all users access.
|
|
|
|
|
RE: User set authentication (RDA) - 29.Sep.2008 8:56:53 AM
|
|
|
tshinder
Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline
|
OK, but at this point, learn how things work and once you get that down, crater the box. If it's been this unlocked for this long, the chances are that the boxes is compromised.
You can use authentication for connections to the firewall itself. Only through the firewall.
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
