Sign in

Microsoft.com

United States (English)

Brasil (Português)Česká republika (Čeština)Deutschland (Deutsch)España (Español)France (Français)Italia (Italiano)Россия (Русский)대한민국 (한국어)中华人民共和国 (中文)台灣 (中文)日本 (日本語)香港特别行政區 (中文)

Forefront Edge Security TechCenter

Troubleshooting

Forefront Edge Security TechCenter > Forefront Edge Security Forums > Forefront Edge Security - Internet Access > By passing AD authentication in ISA 2006

By passing AD authentication in ISA 2006

Monday, September 28, 2009 10:51 PMjroc151

0
Sign In to Vote
Hello,

I have a domain webserver running IIS6 on a Windows 2003 Std server. Curerntly, I have published my website via a rule set up on my ISA 2006 server. Outside of my LAN, when users try to connect to: https://xyz123.com, they are greeted with an authentication dialog box, asking users to enter their domain credentails. Once this is done, all works like a charm. On the LAN side, you do not get the dialog box for authentication.

I am having a tough time trying to figure out if there is a way to bypass authenticating through Active Directory, just to get to the webserver externally? Is my only option to put my webserver in a DMZ? Any tips and advice is greatly appreciated!

Thanks in advance!
- Reply
- Quote

Answers

Monday, September 28, 2009 11:48 PMjroc151

0
Sign In to Vote
I figured out how to do this.

On the left hand pane, go to: Firewall Policy

Right click on the Firewall policy you wish to edit and choose "Properties"

Go to the "Users" tab. In the "This rule applies to request from the following user sets:', add the "All Users" group by clicking the "Add" button to the right. "All Users" should be the only group listed, if not remove all others. Click "Apply", then "Test Rule". If all checks out ok, click the "OK" button.

Click on "Apply" at the top to apply settings to your firewall policy.
- Marked As Answer byjroc151 Monday, September 28, 2009 11:48 PM
- Reply
- Quote

All Replies

Monday, September 28, 2009 11:48 PMjroc151

0
Sign In to Vote
I figured out how to do this.

On the left hand pane, go to: Firewall Policy

Right click on the Firewall policy you wish to edit and choose "Properties"

Go to the "Users" tab. In the "This rule applies to request from the following user sets:', add the "All Users" group by clicking the "Add" button to the right. "All Users" should be the only group listed, if not remove all others. Click "Apply", then "Test Rule". If all checks out ok, click the "OK" button.

Click on "Apply" at the top to apply settings to your firewall policy.
- Marked As Answer byjroc151 Monday, September 28, 2009 11:48 PM
- Reply
- Quote

Need Help with Forums? (FAQ)