[ISA 2006] Authentication required to upload some files
- Best,
in our school we use an ISA server in a domain to specify who can access the Internet, etc.
We also use the service 'Smart School' which allows us to do a part of the school administrationonline.
The ISA server is configured so that we always have access to smartschool, with the http and https protocols.
Other Internet sites and protocols are not allowed.
But we have a problem with uploading some files. If we want to upload files to smart school the AD users are being asked for their username and password for the domain, but if we fill them in running Internet Explorer, the browser crashed. And if we click the cancel button we get error 407.
I had discovered that somewhere you should check the release of "Require all users to authenticate" but that was already out. what could be wrong here, and what should we set so that we are not more asked to authorize us?
regards
P.S.: sorry for my bad english
A screenshot with the authorisation window:
http://www.familievileyn.be/upload/tweakers/foutmelding_ISA2.JPG-for-web-LARGE.jpg
A screenshot when i click on cancel:
http://www.familievileyn.be/upload/tweakers/fout22.JPG-for-web-LARGE.jpg
Answers
Hi,
Thank you for the update.
To troubleshooting the issue, I’d like to confirm the following:
1. The ‘Smart School’ is a website and in the Internet, right?
2. If you change the users from all authenticated users to all users, does it work for upload?
3. On the access rule, add the protocol “http, https, ftp” and see if it works.
Regards,
Nick Gu - MSFT- Marked As Answer byNick Gu - MSFTMSFT, ModeratorFriday, December 04, 2009 4:21 AM
All Replies
Hi,
Thank you for the post.
Before going any further, I’d like to know how do you configure the access rule? Would you please tell us more details? On the User Sets, please make sure you have added “all users” and install firewall client on the problematic machine.
Regards,
Nick Gu - MSFT- Thank you for the respons. I'm not at school now, but I will look after the information tomorrow. We don't use the firewall client, because, than smartschool doesn't work at all... regards
- Access rule:
- Internal to external
- All authenticated users
- HTTP ans HTTPS
- Edited byNathan Vileyn Thursday, November 26, 2009 4:26 PM
Hi,
Thank you for the post.
Please monitor the ISA logging when uploading the files. And this will indicate whether ISA block the traffic. Meanwhile, please remove the “All authenticated users” and add “all users” and see if it works.
Regards,
Nick Gu - MSFT- Proposed As Answer byNick Gu - MSFTMSFT, ModeratorThursday, November 26, 2009 9:52 AM
Hi,
Thank you for the post.
Please monitor the ISA logging when uploading the files. And this will indicate whether ISA block the traffic. Meanwhile, please remove the “All authenticated users” and add “all users” and see if it works.
Regards,
Nick Gu - MSFT
Hi!
Thank you!
We already monitored the ISA logging while uploading files, but we don't see some problems...
Thanks for the help!
regards- Hi!
I monitored the ISA logging again when uploading some files and I found the error, but not an issue...
The error is this:
DENIED CONNECTION
Log type: Web Proxy (Forward)
Status: 12209 The ISA Server requires authorization to fulfill the request. Acces to the Web Proxy filter is denied.
Rule: Smartschool
Source: Internal (192.168.2.100) ==> IP of client
Destination: External (192.168.2.1:8080) ==> IP of ISA
Request: GET http://[url].smartschool.be/[URL]
Filter information: Req ID: 07a8ac4e; Compression: client=No, server=No, compress rate=0% decompress rate=0%
Protocol: http
User: Anonymous
Additional information:
- Client agent: Mozilla/5.0
- Object Source: (No source information is available.)
- Cache info: 0x0
- Processing time: 1ms
- MIME type:
I searched already around the internet, but couldn't find an issue...
And if we change the users from all authenticated users to all users, we can't control who go to smartschool and who not...
Is there an issue?
Regards! Hi,
Thank you for the update.
To troubleshooting the issue, I’d like to confirm the following:
1. The ‘Smart School’ is a website and in the Internet, right?
2. If you change the users from all authenticated users to all users, does it work for upload?
3. On the access rule, add the protocol “http, https, ftp” and see if it works.
Regards,
Nick Gu - MSFT- Marked As Answer byNick Gu - MSFTMSFT, ModeratorFriday, December 04, 2009 4:21 AM
