RE: redirector for HTTPS from firewall to proxy

• From: "Jim Harrison" <jim@xxxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Fri, 14 Mar 2003 07:51:12 -0800

You need to discuss this with your ISA admins.
They are obviously requiring user authentication for outbound access.
Any changes to the ISA that allows your application to work without first
authenticating weakens the security model that ISA is enforcing.

 Jim Harrison
 MCP(NT4, W2K), A+, Network+, PCG
 http://www.microsoft.com/isaserver
 http://isaserver.org/Jim_Harrison
 http://isatools.org

 Read the help, books and articles!
----- Original Message -----
From: "rajeev" <rajeev@xxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Thursday, March 13, 2003 22:41
Subject: [isalist] RE: redirector for HTTPS from firewall to proxy


http://www.ISAserver.org


Hi,
I think i ddin't frame my query properly. Let me outline the scenario once
more.
I have an application that talks to my server (outside the ISA) on SSL.
The ISA setup is not for me to touch. And on this ISA, Web proxy service
is setup to Authenticate all incoming requests using Integrated scheme. If
i configure my application as a web proxy client , it fails the
authentication test as it does not support the Integrated scheme.
But if i configure my app as a firewall client, it works as the HTTPS
requests get serviced directly without requiring the Web Proxy
Authentication.
I am asking if this behaviour could be cahnged in some way in ISA (without
blocking SSL alltogether). As then i have no option but to work on getting
the NTLM authentication working in my app.
If there is no way to pass on the SSL request from firewall to proxy in
ISA, then i can leave the app as it is.
thx for all the hints,
rajeev

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

Other related posts:

• » redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy
• » RE: redirector for HTTPS from firewall to proxy

1. Home
2. isalist
3. Archive
4. 03-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---