• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Web Session - Username Anonymous

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 General] >> Installation >> Web Session - Username Anonymous Page: [1]
Login
Message << Older Topic   Newer Topic >>
Web Session - Username Anonymous - 25.Feb.2003 1:54:00 PM   
jvc

 

Posts: 17
Joined: 27.Jan.2003
From: Wayne, NJ, USA
Status: offline 		How do I stop these people using the proxy without identifing themselves?

I have three IPs set for unlimited access (macintoshs) but every other address should not work without being a Domain Member, but if I look in the Sessions list, I see about 25% anonymous users.

Some of these show the same IP as a validated user further down the list (such as myself). I want to make sure all access is logged to the login name, and these anonymous connections are told to identify themselves (and not to kill the macs access)

Help?
Post #: 1
RE: Web Session - Username Anonymous - 25.Feb.2003 2:04:00 PM   
zzz343

 

Posts: 762
Joined: 19.Feb.2002
From: World's 7th Nuclear Power
Status: offline 		hello JVC,

Remova all anonymous access. Allow access to specific users/groups only.
OR
Force authentication via ' ask authentication for unidentified users' in outgoing web listner.

(in reply to jvc)
Post #: 2
RE: Web Session - Username Anonymous - 26.Feb.2003 4:48:00 PM   
jvc

 

Posts: 17
Joined: 27.Jan.2003
From: Wayne, NJ, USA
Status: offline 		This would work fine, but now my Macs can't access the internet - their authentication fails and cause all kinds of problems in their browsers like broken images and "general protection fault" type crashes.

I put them on SOCKS and now they can access everything except HTTP as I have that re-directed through the Web Proxy for permissions.

If I set the HTTP Redirector to go right to the destination site, everyone can install proxy client, leave their LAN settings options blank and get unlimited access on the internet with no authentication!

Someone must have a secure trackable way to allow Macs on the ISA server without opening the server right up.

Is it possible to have a different IP for Mac access via ISA server on the same server machine?

(in reply to jvc)
Post #: 3
RE: Web Session - Username Anonymous - 27.Feb.2003 12:52:00 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi JVC,

Use client address sets instead of user based authentication. Remove the "ask for authentication" checkmark, and make sure that all site and content rules require user/group authentictation or a client address address set to access.

HTH,
Tom

(in reply to jvc)
Post #: 4
RE: Web Session - Username Anonymous - 27.Feb.2003 2:27:00 PM   
jvc

 

Posts: 17
Joined: 27.Jan.2003
From: Wayne, NJ, USA
Status: offline 		I have tried this method, and it works, but half the entries in the logs then say Anonymous for my regular non-mac users, the only way to tell them apart is by their IP.

(in reply to jvc)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 General] >> Installation >> Web Session - Username Anonymous Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts