hi i have a question regarding isa 2004 and its radius integration,here it goes:
lets say i have isa 2004 box not part of the domain and i am publishing exchange 2003 with forms based authentication,this thing works and is pretty easy to configure. now i want to elevate beyond this and make the isa ask for authentication using radius in the internal network(windows 2003 dc) even before i get to the published site. is this possible(all i get is multiple prompts) on the radius option i configured everything and on the isa i created a radiususers group containing the option all users in the namespace.
does this thing supose to work? can i use radius for authentication rules when the isa is not part of the domain(in the dmz somewhere)??
no:) i know this toms this was just an example i wanted the user to be authenticated before he "sess" the owa logon page. it could be just some site published without authentication at all,which i want the isa to authenticate users before they reach that site but i want him to take the user datbase from radius and not local users(since he is not in the domain)
OK, I think I understand what you want to do. Yes, you can auth the user at the firewall using RADIUS before the user is allowed access to the site. But I don't think you can use RADIUS and FBA for the same rule. I haven't checked it yet, so if you test it, let us know what you find out!
yes exactly:) thats what i ment i am thinking this if a user from the internet tries to connect i dont even want him to see the owa page cause then he will know its hosting exchange i want an prelimitery check of identitiy before he "sees" the page(nevermind if its something else then owa)