Re: Multiple Outbound listeners with different IPs Hi, I am having

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

I guess I am not explaining it well enough. I understand how you said you
can't do the outgoing listeners anymore. What I was looking for was ideas on
how people would use the newer technology in a similar situation. I thought I
explained the situation enough.

I did not set this up originally, that person is long gone so I am only
making an educated guess on what they were trying to accomplish. It is set up
for integrated on one listener so people who log in as shipping gets no web
access. This covers the majority of people who log in as shipping. A few
machines have people who log as shipping that go to another listener that
uses basic. In this instant they are still denied access under the shipping
logon but when they bring up IE it prompts them for credentials, they enter
another set of credentials that allows them access and allows us to track
them because that id is unique aside from the generic shipping logon.

I hope this is a better explanation. I am reading alot of isa 2004 sources
now. Again, I was just looking for some thoughts on how might be a better way
to use the new technology.

Thanks for your help.


"Jim Harrison (ISA SE)" wrote:

It still doesn't answer the question of different auth methods (Basic &
Integrated).
I've already said; you can't separate auth methods for outgoing requests any
more.
--
Jim Harrison (ISA SE)

This posting implies no warranty and confers no rights.
http://catb.org/~esr/faqs/smart-questions.html



"Mankney" <Mankney@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:9047958D-7805-4A1F-AEB3-28D06B28A6FB@xxxxxxxxxxxxxxxx
hi,

The shipping login in Active Directory is tied to a lot of application and
active directory security for the plant floor. We could certainly change
alot
of things but it would be alot of work and the plant floor hates change :).
We will do this if the alternatives are less attractive.

Some users though who need the network security of the shipping login need
to access Customer's websites in order to perform their duties.

I hope this helps and thanks for your ongoing help.



"Mankney" wrote:

Hi, I am having an issue configuring outbound Internet Access for ISA
2006.
On our old ISA 2000 server we had 2 outgoing listeners with different IPs
set
up with different authentication. One address was for Integrated and the
other was for Basic. We could then force certain people to type in
credentials before they used the Internet. No one is using the firewall
client.


The question I have is how to do the same thing in 2006. I have outbound
access set up but I don't know how to have different internal addresses
use
different authentication methods. Please help. Any help is appreciated.

I cannot find any documentation on this. The main issue right now is I
can't
get the system to ask for credentials when opening up Internet Explorer
plus
the whole thing of using multiple IPs with different authentication
methods.

Thanks for any help in advance.

.

Relevant Pages