Re: Weird problem with password authentication

Hello Simon,

Thank you for posting back!

Sorry to keep you waiting but I were sick yesterday.

Yes, you need to uninstall ISA Client on the web server and install
SecureNAT.

If the issue persists after you doing so, please help me to gather
following information for further research:

1. What is the URL you use to access the web site from the Internet? Also,
what is the URL you use to access OWA from the Internet?

2. Please help me to gather ISA Log and ISA Infor. To do so,

ISA Info:

1) Download the file from the following URL:

http://www.isatools.org/isainfo/ISAInfo.zip

2) Extract all files to a folder on ISA server

3) Double click Isainfo.js. This will generate 2 files
ISAInfo2004-<computer-name>.log and ISAInfo2004-<computer-name>.xml in the
current folder.

4) Please send these files to me.

We also need to gather the ISA logs:

1) Schedule a down time.

2) Open ISA 2004 management console.

3) Expand the server node and highlight 'Monitoring'.

4) In the right pane, switch to the 'Logging' tab, make sure the 'Task
Pane' is showed there.

5) In the 'Task Pane', click 'Configure Firewall Logging' under 'Logging
Tasks', and then switch the 'log storage format' from 'MSDE database'
(default) to 'File'.

6) Switch to the 'Fields' tab, click 'Select All', and then click OK.

7) In the 'Task Pane', click 'Configure Web Proxy Logging' under 'Logging
Tasks', and then switch the 'log storage format' from 'MSDE database'
(default) to 'File'.

8) Switch to the 'Fields' tab, click 'Select All', and then click OK.

9) Click 'Apply' to save changes and update the configuration.

10) Temporarily disable the Firewall service. To do that, please click
Monitoring | Services tab, and then right click 'Microsoft Firewall' to
choose 'Stop'.

11) Clear the current existing W3C logs. To do that, go to the log saving
directory and clean any existing .W3C logs. By default, the logs will be
saved to 'C:\Program Files\Microsoft ISA Server\ISALogs'. (Some MDF may not
be able to deleted,that's normal.) You may backup them first and then
delete them.

12) Go back to the ISA 2004 management console, and then Start the stopped
'Microsoft Firewall' service.

13) Reproduce the problem, stop the service, and then gather the resulting
W3C files to me for analysis.

14) Please also let me know the IP address of the testing client/server so
that I can filter the data.

Please take your time to perform the steps. If you have any updates, please
feel free to let me know. I am looking forward to hearing from you!

Best regards,

Brandy Nee

Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security
======================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.
======================================================
This posting is provided "AS IS" with no warranties, and confers no rights.



--------------------
From: "Newbie" <newbie@xxxxxxxxxxx>
References: <eLUASgcSGHA.5728@xxxxxxxxxxxxxxxxxxxx>
<14ASOQ#SGHA.2100@xxxxxxxxxxxxxxxxxxxxx>
Subject: Re: Weird problem with password authentication
Date: Mon, 20 Mar 2006 08:56:06 -0500
Lines: 139
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2670
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2670
X-RFC2646: Format=Flowed; Original
Message-ID: <ueQzUYCTGHA.5908@xxxxxxxxxxxxxxxxxxxx>
Newsgroups: microsoft.public.windows.server.sbs
NNTP-Posting-Host: gw1.gennum.com 209.47.33.228
Path:
TK2MSFTNGXA03.phx.gbl!TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP1
4.phx.gbl
Xref: TK2MSFTNGXA03.phx.gbl microsoft.public.windows.server.sbs:254197
X-Tomcat-NG: microsoft.public.windows.server.sbs

Hi Brandy,

Thanks for your reply. I have SBS 2003 Premium with SP1, ISA 2004 on the
server as well as on all domain PC's. This is happening from the Internet
only. Within the LAN, I can access the web site without prompting for
credentials.

Currently the web server (running with other apps) has the ISA client
installed, and I ran the "publish web site" wizard in ISA 2004 to enable
access from the Internet. On the router, I have the port forwarded to the
ISA external IP. Are you saying I should un-install the ISA client on the
web server?

I should mention I have 2 NIC's in the SBS server.

Thanks again for your help.
Simon


.

Relevant Pages
Loading