What happens depends largely of your deployment scenario (enterprise, standalone AD member, standalone non-member, etc.), the rights of the ISA in each scenario and the option you chose when you ran the wizard. Bear in mind that "secure your mail server" is not the same as "secure your server". Jim Harrison MCP(NT4, 2K), A+, Network+, PCG ----- Original Message ----- From: "Armando Treviño López" <armando.trevino@xxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Tuesday, October 30, 2001 15:16 Subject: [isalist] Re: jim http://www.ISAserver.org I am trying to publish a web server and secure an exchange server by putting them behind the ISA. I have already run the security wizard. So what happen? can I still publish a server or maybe it will be restrictive in this aspect. Also is there a form to come back to the default installation after running the security wizard? Thanks. -----Original Message----- From: Jim Harrison [mailto:jim@xxxxxxxxxxxx] Sent: Tuesday, October 30, 2001 5:09 PM To: [ISAserver.org Discussion List] Subject: [isalist] Re: jim http://www.ISAserver.org While it's true that Windows 2000, in its default installation, is not as secure as it might be for enterprise deployment (whole different discussion, that), it's also true that running the security wizards that ship with ISA have proven to be more restrictive than helpful. The documentation that exists regarding them is sparse at best and is pretty hard to understand except to those who understand the fine details of the Windows 2000 security. I don't number myself among them, needless to say. Jim Harrison MCP(NT4, 2K), A+, Network+, PCG ----- Original Message ----- From: "Brian Tirch" <btirch@xxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Tuesday, October 30, 2001 14:55 Subject: [isalist] jim http://www.ISAserver.org Jim, Why do you say never run the security wizard, no this will not lock down the exchange server but this will help tighten up the servers policies that are implemented, and well all know how out the box ms is not that secure..... -----Original Message----- From: Jim Harrison [mailto:jim@xxxxxxxxxxxx] Sent: Tuesday, October 30, 2001 5:48 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Hacking, security http://www.ISAserver.org Never run the security wizard!!! Seriously, it's not the answer to locking down the Exch server. Try this for a good starting point... http://www.microsoft.com/technet/treeview/default.asp Jim Harrison MCP(NT4, 2K), A+, Network+, PCG ----- Original Message ----- From: "Brian Tirch" <btirch@xxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Tuesday, October 30, 2001 13:00 Subject: [isalist] RE: Hacking, security http://www.ISAserver.org On way is to run the security wizard Brian Tirch Entre Information Services 757-599-5866 ext 123 -----Original Message----- From: Bemen [mailto:bemen@xxxxxxxxxxxxxxxx] Sent: Tuesday, October 30, 2001 3:06 PM To: [ISAserver.org Discussion List] Subject: [isalist] Hacking, security http://www.ISAserver.org Hy! First, thank all of you who helped me to solve my exchange problems... I still have some stuff going on, but it's a different problem. I think that the previous administrator on my network who got kicked out wants to hack into my ISA/EXCHANGE server. I'm not sure, but overnight strange things happen and next day my boss calls me that the server is not working, emails don't go out, stuff like that. IIs there a way to log these things? Secondly, who can I make my ISA more secure?? Thank for the help! Bemen ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: btirch@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: btirch@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: armando.trevino@xxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')