The first thing I would do is rethink my strategy as to load balancing and redundancy. Enterprise Arrays get you: 1. Centralized management of multiple ISA Servers with all the bennies of differing array policies 2. CARP; a cache-sharing mechanism that helps to "spread the wealth" of the associated ISA Server cache drives and RAM 3. CARP support in wpad or /array.dll?Get.Routing.Script (allows the client to "walk the list" of servers) ..notice how none of the above items include the words "failover" or "redundancy"? The reason is that (IMHO) any failover technique that depends on the client making informed decisions regarding the state of a remote server is doomed to failure. DNS Round Robin is another example of such a technique. The state of any given server is never fully understood by the clients it serves. Consequently, long timeouts and unwarranted failures are often the result of a dependency on this kind of load-balancing or failover choice. Unless $$ are the primary factor in this chice (unlikely, since you can afford $5K per CPU license), then you should investigate a separate software or hardware solution. Both http://microsoft.com/isaserver/partners and http://isaserver.org include long lists of both items. Something there should fit the bill quite nicely for you. Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://www.microsoft.com/isaserver http://isaserver.org/Jim_Harrison http://isatools.org Read the help, books and articles! ----- Original Message ----- From: "shane mullins" <tsmullins@xxxxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Monday, March 31, 2003 11:27 Subject: [isalist] ISA Enterprise Edition and Active Directory http://www.ISAserver.org Hello, We currently have two ISA servers running in integrated mode as standalone servers. We are moving them to an array with Windows 2000 Advanced Server and ISA Enterprise edition for load balancing and redundancy. Of course with ISA Enterprise Edition and an Array the array members must have Active Directory installed and configured. I have read that, for security reasons, the ISA boxes be in a seperate AD container. My question is, how would you set up AD on your array members? Thanks Shane --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.465 / Virus Database: 263 - Release Date: 3/25/2003 Free Trial Software: Monitor & Manage Web Use with SurfControl Web Filter for MS ISA Server http://www.surfcontrol.com/go/zisadl1 ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Exchange Server Resource Site: http://www.msexchange.org/ Windows Security Resource Site: http://www.windowsecurity.com/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')