• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Multiple FBA - Same Domain - Different Paths

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Publishing] >> Web Publishing >> Multiple FBA - Same Domain - Different Paths Page: [1]
Login
Message << Older Topic   Newer Topic >>
Multiple FBA - Same Domain - Different Paths - 2.Apr.2007 8:29:49 PM   
Tobin

 

Posts: 14
Joined: 2.Apr.2007
Status: offline
What I would really like to do is;

www.mydomain.com/portal - Forms based AD auth
www.mydomain.com/secure - Forms based RSA

I tried doing web listener chaining, but it doesn't work. I can have FORM+BASIC, but not FORM+FORM. The reason is because cookieauth.dll wants to take over the root of the domain.

So does anyone know how I might acheive this? Either with ISA or 3rd party tool?

I realise portal.mydomain.com and secure.mydomain.com would work, but I would really like to keep the same URL.
Post #: 1
RE: Multiple FBA - Same Domain - Different Paths - 9.Apr.2007 10:01:04 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Because there are two different forms of authentication required here, you would need to create two different listeners and then create two rules, one for each listener.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to Tobin)
Post #: 2
RE: Multiple FBA - Same Domain - Different Paths - 9.Apr.2007 6:31:32 PM   
Tobin

 

Posts: 14
Joined: 2.Apr.2007
Status: offline
Thanks Tom,

Yes I realise that (sorry, should have been more clear in my post with the listener chaining) - My issue is that when I have two listeners for the same domain, it doesn't work.

Cookieauth.dll takes over the root of the domain and depending on my setup, I end up with either a 64 (host not availalbe) error, or end up in a constant loop of authentication

(in reply to tshinder)
Post #: 3
RE: Multiple FBA - Same Domain - Different Paths - 10.Apr.2007 11:01:55 AM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
OK, I see the problem. Since both listeners would need to use the same certificate, that won't work. I'm not aware of any way you make this work, though.

Tom

_____________________________

Thomas W Shinder, M.D.

(in reply to Tobin)
Post #: 4
RE: Multiple FBA - Same Domain - Different Paths - 10.Apr.2007 7:25:50 PM   
Tobin

 

Posts: 14
Joined: 2.Apr.2007
Status: offline
Ok, thanks anyway :)

FYI (and others of course) I've tried chaining two ISA boxes, one 2006 and one 2004, have tried using FlexAuth, but it's all a no go.

If anyone does come up with a solution to this, i'd love to know about it.

(in reply to tshinder)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Publishing] >> Web Publishing >> Multiple FBA - Same Domain - Different Paths Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts