Posts: 2
Joined: 3.Feb.2004
From: Manchester
Status: offline
Hello,
I have recently added WPAD in DNS and auto-proxy detect on ISA 2004 server which works fine when using external websites, however we have a number of internal web applications that require integrated authentication and it seems since autodetect has been enabled the credentials do not pass through the browser to the webapps.
On the properties of the internal network:
On the Web Browser tab I have *.internaldomain.com, the internal address range and I have also tried adding the internal web server names that run the web apps. All 3 tick boxes are enabled to bypass proxy for servers in this network and directly access computers in the domains tab.
On the Domains tab I have *.internaldomain.com and I have also added the web server names (FQDN and Netbios).
On the Authentication properites from the Web Proxy tab it was set to integrated, however "require users to authenticate" was not enabled. I did try enabling this, but then users were being prompted for credentials when they tried to go to an external or internal site, even after a reboot. I have also tried enabling basic authentication and specifying the internal domain, but this didnt seem to make a difference.
The starnge thing is , and maybe a clue, is that IE7 users dont seem to have the issue with internal web apps, whereas IE6 users do. If the ISA server is manually entered and the bypass proxy addresses are *.internaldomain.com, webappalias, 10.* then everything works fine, however we need to enable the auto-proxy detect for all our 400+ roaming users.
Could somebody please offer any assistance with this issue?
Posts: 2228
Joined: 12.Apr.2004
From: Taylorville, IL
Status: offline
You don't go through ISA to get to "internal" web sites from a machine operating as a proxy client.
The Internal sites are supposed to resolve to the direct specific internal ip# of the web server itself.
This is usually done with Split-DNS and is the easiest to maintain. It can also be accomplished by editing HOST files on each and every machine,...which oviously is a hassle to manage.
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [ISA Server 2004 Firewall] >> Network Infrastructure >> Auto-detect authentication help please 
Auto-detect authentication help please - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread