• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Authenticate on other ISA servers?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 General ] >> General >> Authenticate on other ISA servers? Page: [1]
Login
Message << Older Topic   Newer Topic >>
Authenticate on other ISA servers? - 1.Jun.2006 4:23:02 PM   
davehocking

 

Posts: 15
Joined: 19.Jan.2004
From: Rochdale, UK
Status: offline 		Hi all, below is a rough network diagram...

Essentially I want users of the Terminal Server to be authenticated by the Office ISA server.



..So if a user of the TS box views the Sharepoint site, I would like that to be included in the logs on the Office ISA server, with the users details. How do I get the Terminal Server to 'pass' authentication to the 'other' ISA server?

Ideas please!

Cheers

Dave
Post #: 1
RE: Authenticate on other ISA servers? - 3.Jun.2006 6:30:09 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Dave,

Are these trihomed ISA firewalls?

thanks!
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to davehocking)
Post #: 2
RE: Authenticate on other ISA servers? - 7.Jun.2006 4:31:46 PM   
davehocking

 

Posts: 15
Joined: 19.Jan.2004
From: Rochdale, UK
Status: offline 		Hi Tom, they're much more than tri-homed, the DMZ ISA server has 5 and the Office ISA has 6 active interfaces..

Any advice greatly appreciated! :)

(in reply to tshinder)
Post #: 3
RE: Authenticate on other ISA servers? - 9.Jun.2006 2:54:47 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Dave,

Right now the best option is to create a route relationship between the source and destination ISA firewall Networks and then use the Firewall client.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to davehocking)
Post #: 4
RE: Authenticate on other ISA servers? - 9.Jun.2006 12:04:53 PM   
davehocking

 

Posts: 15
Joined: 19.Jan.2004
From: Rochdale, UK
Status: offline 		Will I need to open any ports to allow the firewall client to connect? - This is where it all went wrong for me when I tried it, I couldn't find a definitive list of what ports would need opening.

Thanks for the advice, appreciated :)

(in reply to tshinder)
Post #: 5
RE: Authenticate on other ISA servers? - 9.Jun.2006 6:33:54 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Dave,

You'll need need the authentication ports open that are typically used for intradomain communcations. Try LDAP/LDAPS and RPC (all interfaces) from the Firewall clients to the DCs on the other Network.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to davehocking)
Post #: 6

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 General ] >> General >> Authenticate on other ISA servers? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts