Dr. Tom Shinder's ISA Server and Beyond: Real World Security Solutions for Microsoft Enterprise Networks
Demystifies the least understood and most under documented ISA Server configurations.
TABLE OF CONTENTS Dr. Tom Shinder's ISA Server and Beyond: Real World Security Solutions for Microsoft Enterprise Networks
Frequently Asked Questions
The following Frequently Asked Questions, answered by the authors of this book, are designed to both measure your understanding of the concepts presented in this chapter and to assist you with real-life implementation of these concepts. To have your questions about this chapter answered by the author, browse to www.syngress.com/solutions and click on the "Ask the Author" form.
| Q. | What type of authentication should I use for my published Web sites? Should I force users to authenticate at the Incoming Web Requests listener and internal network Web server? | |
| A. | You can use any type of authentication you like with an internal network Web site that you're publishing with Web publishing rules. It's important that you only require authentication at one location. You should not require authentication at the Incoming Web Requests listener and the internal Web site. ISA Server will not support this type of double authentication. The only time you can authenticate at the Incoming Web Requests listener and the internal network Web server is when you authenticate with the Incoming Web Requests listener using a client certificate. If you authenticate with the Incoming Web Requests listener using a client certificate, then you can use another form of authentication to authenticate with the internal network Web server. In general, we prefer authenticating with the Incoming Web Requests listener, as this offloads the authentication processing off the internal network server and places it on the ISA server. | |
| Q. | I want... |
Copyright Syngress Publishing, Inc. 2002 under license agreement with Books24x7
