Hi Mark, Stretching my memory back to ancient history, from what I recall, NT is NetBIOS dependent on its domain functions. So, it uses WINS and the service identifiers associated with the WINS database entries. Also, if the ISA Server isn't configured to use a WINS server, it will broadcast. If the PDC isn't within IP broadcast range, then you're in trouble :-) HTH, Tom Thomas W Shinder www.isaserver.org/shinder ISA Server and Beyond: http://tinyurl.com/1jq1 Configuring ISA Server: http://tinyurl.com/1llp -----Original Message----- From: Mark Rowlands [mailto:mark.rowlands@xxxxxxxxxxx] Sent: Tuesday, January 28, 2003 1:24 PM To: [ISAserver.org Discussion List] Subject: [isalist] integrated authentication problem http://www.ISAserver.org Isa server 2000 fully patched sp3 etc will only authenticate against a particular bdc in our NT domain. As soon as we switch off this one particular bdc, ISA stops authenticating. The only slight clue we have is that this BDC was at one time the PDC, but this was before the ISA server was in place. Can any one shed any light on a) By what process ISA picks an NT domain controller to authenticate against b) How can you change this if it is predefined. thank you... Mark (puzzled) ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Exchange Server Resource Site: http://www.msexchange.org/ Windows Security Resource Site: http://www.windowsecurity.com/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')