Anonymous requests in the Web Proxy log

By /

Question #832

Why do I see anonymous requests in the Web Proxy log? I’m forcing authentication and I don’t have anonymous access rules.

Answer

This FAQ is by Thomas W Shinder: The reason for this is that all initial requests made by Web Proxy clients are sent anonymously. The ISA Server will send by a access denied message and a request for credentials. The Web Proxy client then sends the appropriate credentials or asks you to provide them, depending on the type of authentication you’re using on the listener. Then the request is allowed or denied based on the sent credentials. No, you cannot eliminate these requests from the log – that would violate ISA Server’s policy of logging everything.

About The Author

Tom Shinder is a Program Manager at Microsoft and has two decades of networking and security experience. He has written dozens of books, thousands of articles, and spoken at large industry conferences on the topics of IT infrastructure, Cloud computing, and cybersecurity. In his free time, Tom enjoys participating in equine prediction markets.

Read Next

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top