I just got ISA 2006 Up and running on a Windows 2003 R2 Server 2 Nicks. I have Exchange OWA and A Citrix Server Published on the ISA BOX. The ISA server is a member of the domain. I followed the Setup configuration in ISA Server 2004 Book and Everything works. However when I go to lock down the box changing all open access rule, After I change the Authentication from All users to All authenticated Users I open up Monitoring-Sessions and I start to see Domain/usernames pop up instead of Anonymous. However after 10 Minutes or so the users are unable to surf the Internet. If I turn it back to all users the Users are once again able to surf. I am looking through the logs but I am not really sure what I am looking for. If I watch the logs I start seeing the all open access rule Denied in the logs. I am just wondering why the ISA server is not authenticating the users. The clients are configured web Proxy clients. I also still see alot of securenat clients trying to connect even after the Authentication change. I also created a new group and added the Windows active directory users to that group and added that group to the all open access rule. Also if anyone has any other resources for ISA 2006 that would be great.
Thanks in Advance
Edited to make more sense.
< Message edited by bparadise -- 29.Aug.2006 1:53:30 PM >
Ok I have a bit more information. I was watching the log and all of a sudden I noticed that one of the detination IP's is a Private IP but not one on my Network. My network is 192.168.1.x and the Ip address is 192.168.2.x At this point I am thinking of uninstalling ISA and reinstalling it. Any tips for complete removal?
Thanks Tom! Well I also now ruled out the 192.168.2.x problem. I had a Misconfigured CA antivirus Application requesting updates from that address. That should be resolved. So I am back to square 1 on why ISA is doing what its doing.
Well I seem to have this fixed. Now exactly sure what fixed it. The only thing I really changed was in Networks I saw that I had Basic Authentication checked and I unchecked it and shortly after this my Web Proxy Clients Started Authenticating. Other than that Nothing had changed. The only other thing I think might have been a problem was RULE ORDER. Rule order is everything as I find out the hard way:)