I want to lock down my network and enable only domain users access to any network resource (any of my Servers and Internet).
On my network, i am running ISA Server 2006 (SP1) and Server 2003 Std. I have a domain XXX.com which my users log into. I joined the ISA Server to XXX domain (to enable the machine pull user accounts).
Please can anyone help me with the correct steps to enable only XXXX Domain users to access the network. I know i have to change the users tab from all users to a specified user but i cant see where ISA allows OU's. Even if i add a group, and maybe later i add a new person to the domain, i have to go to the ISA and re-add that user before he / she can access the network.
Hi renatomarson, i am very grateful for your assistance, it worked. I actually thought that the ISA wouldlift the OU's i created on the Domain controller but i used your advise and its working.
I created a security group and added everyone in my domain to that group, now on the ISA i changed the all users to the group i created on the Domain controller. Now, ant request that come through the ISA, it looks at the group members on the DC and either allows or denies access. But, it also means that anytime i create a user on the DC, i must add the user to that security group. A little bit tasking but manageable.
Hi renatomarson and everyone, I am still having problems with my ISA Server. Now on my HQ ISA, the security group i created works very well. All i have to do is, add users to the security group on my DC and immediately they can access my network (I changed the all users to the security group i created on my DC). Now, on one of my branch offices, i created the same group on the DC over there, added users to that security group, now when i try to access the DC from the ISA (or rather create the security group on the users tab), i get the following error "Windows cannot resolve email@example.com, either the domain cannot be contacted or not reachable". Please can anyone help resolve this?