Hmmm, ok. I'll look into that. -----Original Message----- From: isapros-bounce@xxxxxxxxxxxxx [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of Jim Harrison Sent: Wednesday, September 05, 2007 8:07 PM To: isapros@xxxxxxxxxxxxx Subject: [isapros] Re: RPC Question You can't transition NTLM to NTLM. If you want NTLM authentication at ISA, you have to use KCD to the published server. -----Original Message----- From: isapros-bounce@xxxxxxxxxxxxx [mailto:isapros-bounce@xxxxxxxxxxxxx] On Behalf Of Amy Babinchak Sent: Wednesday, September 05, 2007 4:15 PM To: isapros@xxxxxxxxxxxxx Subject: [isapros] RPC Question I'm working on an ISA 2006 machine with an Exchange 2003 server behind it to publish Outlook Anywhere. I used the wizard to create the rule. If I select Basic Authentication (on both ISA and IIS) the publishing rule works. If I use NTLM (on ISA and IIS) it doesn't. I get ISA Denied logs reason 12239. Does it not support NTLM authentication? Since this works with Basic I know I don't have certificate issues and I know it can authenticate usernames, passwords and find its way to the mailbox. Amy All mail to and from this domain is GFI-scanned.