This article shows how to further extend load-balancing capabilities.
In this article we will edit the configuration script supplied by ISA Server 2004 Standard Edition and deployed it to our browser clients.
This is Part 3 of a three-part article is a step-by-step guide to building a PKI and using ISA Server 2004 to enable some often overlooked but important features in certificates.
In this Part 2 we’ll create the “Root” Certificate Authority; the lynchpin of a Public Key Infrastructure.
Certificates find a place in ISA Server’s publishing rules and VPN connections and it is a fairly simple task to start certificate services on a server to provide for these requirements. However for serious use, such as using your certificates with partner organisations or with many remote users who never visit your locations, you need something a little more robust. This three-part article is a step-by-step guide to building a PKI and using ISA Server 2004 to ensure your certificates function correctly outside of your local network.
Outlook Web Access, Outlook Mobile Access and Exchange ActiveSync all use HTTP methods to access Exchange 2003. This article describes the mechanisms behind these features and explains why the features can sometimes be so awkward to configure.
Outlook Web Access, Outlook Mobile Access and Exchange ActiveSync are all methods of accessing Exchange 2003 using HTTP, but making them all work together can be a bit of a nightmare. The problems multiply when users have email addresses selected from more than one email domain. This article explains the mechanisms behind these HTTP features so that you may avoid some of the common pitfalls.
In Part 1 of this article we configured the Internet Authentication Service on our chosen RADIUS server to handle ISA Server 2004’s RADIUS authentication for Web site access. In this second part we look at ISA Server 2004 and how it can utilise RADIUS authentication for its Web publishing rules and Web Proxy service.
A valuable feature in any firewall is an ability to authenticate users before they are allowed to communicate with servers behind that firewall. ISA Server is one of the few firewalls that can provide this service for any Web servers that it publishes, but previously this feature had only been practical if the ISA Server was a domain member with access to the Active Directory. With ISA Server 2004 additional methods of authenticating were introduced, one of which allows the ISA Server to authenticate users in the Active Directory without requiring the ISA Server to be a member of that Active Directory forest. The mechanism it uses is RADIUS, a protocol perhaps better known in connection with dial-up and VPN access.
This guide presents a configuration for ensuring the Exchange 2003 HTTP remote access features (Outlook Web Access, Outlook Mobile Access and Exchange ActiveSync) work together harmoniously both in single-server Exchange deployments and more complex frontend-backend deployments. This guide also illustrates how the use of ‘Integrated’ authentication can provide internal Outlook Web Access users with ‘transparent’ logons.