From: Sydney, New South Wales, Australia
I have an ISA server, with SP1, running in integrated mode. I have a mixture of client operating systems. They are:
90% Windows 2000 with IE 6.0 (SP1). 10% MAC (OS9/10.x)with IE 5.x
The problem I have is related to the MACs.
All clients, including the MAC's are configured to use the proxy server. They are both SecureNAT and Web proxy clients.
When I enable the option "Ask unauthenticated users for credentials" on the outbound web listener the MACs receive incomplete web pages. he Win32 machines are fine. I have left the authentication on the we b listener to be Integrated so that it is transparent for the Win32 users.
When the "Ask authentication ..." option is disabled and anoymous connections are allowed through the MACs have no problems as all.
One of the requirements is to log user names in the ISA logs. I have considered segmenting the MACs and Win32 machines using client address sets however it does not fit with the requirement.
Has anyone else experienced this problem? If so any help/guidance would be greatly appreciated.
I've had the same problem with Macs. I figured tha basic authentication would work and the SecureNAT client configured would work. Well, neither one seems to work very well for OS X. However, I didn't spend much time on the problem, so there might be other things I could have done. What I did was create a client address set so I could exert access control.
If you come up with a solution, let us know. I know that we should be able to configure the browsers as Web Proxy clients, and then enable basic authentication at the Outgoing Web Requests listener, but it doesn't seem to work with the Macs.