RE: ISA 2004 authentication issue

From: "Eric Poole" <EPoole@xxxxxxxxxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Date: Mon, 23 Jan 2006 14:54:13 -0800
If you disable the option and define your rules to only allow access to
specific groups then you will see users again instead of IP's.
_______________________________________________
Eric Poole, CISSP
Senior Information Security Analyst
Community Medical Centers
1140 "T" Street, Fresno, California 93721
559-459-6784 (phone) 559-459-2045 (fax)
 

-----Original Message-----
From: MJ [mailto:mjtech@xxxxxxxxx] 
Sent: Saturday, January 21, 2006 11:49 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: ISA 2004 authentication issue

http://www.ISAserver.org

are you talking about "Require All Users To Authenticate"?

if I disable it, I will only see IP Addresses instead of names, which
make it harder to track where users are going online.

I also use GFI Web Monitor, and the same thing will happen if I disable
this option.

Thanks

-----Original Message-----
From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
Sent: Saturday, January 21, 2006 2:25 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: ISA 2004 authentication issue


http://www.ISAserver.org

There is a known fix for this, but you have to promise to disable that
option before I tell you.

Thomas W Shinder, M.D.
Site: www.isaserver.org
Blog: http://spaces.msn.com/members/drisa/
Book: http://tinyurl.com/3xqb7
MVP -- ISA Firewalls
**Who is John Galt?**



> -----Original Message-----
> From: MJ [mailto:mjtech@xxxxxxxxx]
> Sent: Saturday, January 21, 2006 1:19 PM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: ISA 2004 authentication issue
>
> http://www.ISAserver.org
>
> tell you what
>
> I spent more than 3 hours last night working with MS Support on this 
> problem, and I had tell him to stop and bring me some one who does 
> nothing but work with all ISA version.
>
> they will call me today around 5 PM. After this problem resolved, I 
> promise to post the resolution on the list.
>
> Thanks guys
>
> -----Original Message-----
> From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx]
> Sent: Saturday, January 21, 2006 2:09 PM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: ISA 2004 authentication issue
>
>
> http://www.ISAserver.org
>
> Where do get an attack?
> I'm trying to help you sort this out.
>
> The following are questions:
> What do you find in the ISA logs for the failing connections (filter 
> by client IP)?
> Specifically, we're looking for:
> - username (if provided)
> - name and action (deny/allow) of the rule that denied the request
> - HTTP Status Code
>
>
> --------------------------------------------
> Jim Harrison
> MCP(NT4, W2K), A+, Network+, PCG
> http://isaserver.org/Jim_Harrison/
> http://isatools.org
> Read the help / books / articles!
> --------------------------------------------
>
> -----Original Message-----
> From: MJ [mailto:mjtech@xxxxxxxxx]
> Sent: Saturday, January 21, 2006 11:06 AM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: ISA 2004 authentication issue
>
> http://www.ISAserver.org
>
> what's wrong with "I don't know" or just saying nothing.
>
> I do appreciate the attempt to help, but I don't appreciate attacking 
> me in any way.
>
> Good day
>
> -----Original Message-----
> From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx]
> Sent: Saturday, January 21, 2006 12:16 PM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: ISA 2004 authentication issue
>
>
> http://www.ISAserver.org
>
> Ok - this has gone on long enough...
> Jeez...
>
> What do you find in the ISA logs for the failing connections (filter 
> by client IP)?
> Specifically, we're looking for:
> - username (if provided)
> - name and action (deny/allow) of the rule that denied the request
> - HTTP Status Code
>
> --------------------------------------------
> Jim Harrison
> MCP(NT4, W2K), A+, Network+, PCG
> http://isaserver.org/Jim_Harrison/
> http://isatools.org
> Read the help / books / articles!
> --------------------------------------------
>
> -----Original Message-----
> From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx]
> Sent: Saturday, January 21, 2006 6:06 AM
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: ISA 2004 authentication issue
>
> http://www.ISAserver.org
>
> Do
> Not
> Enable
> That
> Option
> Ever
> Unless
> You
> Know
> What
> You
> Are
> Doing
>
> HTH,
> Tom
>
> Thomas W Shinder, M.D.
> Site: www.isaserver.org
> Blog: http://spaces.msn.com/members/drisa/
> Book: http://tinyurl.com/3xqb7
> MVP -- ISA Firewalls
> **Who is John Galt?**
>
>
>
> > -----Original Message-----
> > From: MJ [mailto:mjtech@xxxxxxxxx]
> > Sent: Friday, January 20, 2006 7:16 PM
> > To: [ISAserver.org Discussion List]
> > Subject: [isalist] ISA 2004 authentication issue
> >
> > http://www.ISAserver.org
> >
> > ISA Server 2004, with "Windows Authentication" and "Require All 
> > Users To Authenticate"
> >
> > Now with this ISA shouldn't prompt domain users for a user and a 
> > password.
> >
> > The one I have still prompting. Is there a reason for this?
> > How can I fix
> > it?
> >
> > Thanks
> >
> > ------------------------------------------------------
> > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> > ------------------------------------------------------
> > Visit TechGenix.com for more information about our other sites:
> > http://www.techgenix.com
> > ------------------------------------------------------
> > You are currently subscribed to this ISAserver.org Discussion List 
> > as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit 
> > http://www.webelists.com/cgi/lyris.pl?enter=isalist
> > Report abuse to listadmin@xxxxxxxxxxxxx
> >
> >
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> jim@xxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
> All mail to and from this domain is GFI-scanned.
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> mjtech@xxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> jim@xxxxxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
> All mail to and from this domain is GFI-scanned.
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> mjtech@xxxxxxxxx
> To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:

> tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit 
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
>
>

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
mjtech@xxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
epoole@xxxxxxxxxxxxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx
-------------------------------------------------------
WARNING/CONFIDENTIAL: 
-------------------------------------------------------
This email, including attachments, may contain information that is privileged, 
confidential, and/or exempt from disclosure under applicable law (including, 
but not limited to, protected health information).  It is not intended for 
transmission to, or receipt by, any unauthorized persons.  If the reader of 
this message is not the intended recipient you are hereby notified that any 
dissemination, distribution or copying of this communication is strictly 
prohibited.  If you believe this email was sent to you in error, do not read 
it.   Reply to the sender informing them of the error and then destroy all 
copies and attachments of the message from your system.   Thank you.
RE: ISA 2004 authentication issue

Other related posts:
