Hello, I recently installed ISA Server 2006 and have successfully gotten it to work as a proxy server. In logging, it shows the client computers accessing web pages, the IP address of the client computer is shown, , but under client Username it is listed as anonymous. Under the Dashboard Tab, I found the connectivity Verifiers and the link to Active Directory is listed as Good. The only function of our ISA Server is going to preform is logging user access to web sites. What am I missing?
Thanks for the reply. I'm new to ISA. I have one policy that permits all traffic. I'm not looking to block anything, I just want to record, users accessing web sites.
elmajdal, Thanks for your reply. That led me to the right area. In my rules, I changed Allow >All Traffic > athenticated users. Then the username showed in the logs.
by default ISA 2006 is configured to support (Windows) integrated authentication. And depending on the authentication methods supported by your web clients (i.e. web browsers) you may run into some limitations. Windows integrated authentication typically means NTLM or potentially Kerberos. You can add additonal authentication methods for your web cleints, such as Basic, to see if that solves your problem.
Within ISA go to: Arrays -> Configuration -> Networks -> Internal -> Web Proxy -> Authentication ->
and add/remove the authentication methods as necessary, apply your settings let the configuration change replicate to your ISA server(s), and try again.
Hi, I am experiencing the same issue and I need to report Web usage on Authenticated/Domain Users. The Server went live today so I am unable to test the possible resolution detailed.
For some reason, no matter what way I approach this I run into the same issue... any rule I create and put Authenticated Users in, it kills traffic, or does not function like it should.. basically it's acting like it's not seeing anybody as being an Auth User..so i jacks up everything I try to do... still anonymous in my reports which is not real helpful.
If I could figure out why ISA is not seeing anybody from AD as being Auth I could make this work great, I have quite a few ideas about customized rules for certain user groups etc. plus the reports....but nothing yet,