Archive for the ‘ISA 2006’ Category
How to fix missing PPTP Interfaces from RRAS console in ISA 2006 and stop a memory leak in the process
All PPTP VPN interfaces in ISA 2006 (sp1) disappeared from the Routing and Remote Access Service console, this problem was a cool problem both because it was challenging but also due to the unexpected results and solutions we found.
The first google attempt at finding a solution told us to try the following workaround – Not recommended!
- Run the following command: C:\> netsh int ip reset c:\resetlog.txt
Well this solution might fix the problem here and now, but you might as well turn to the good old solution of restarting your server every time it fails, because this solution will do the following.
- Enable DHCP and remove all IP configuration of all interfaces.
Not the smartest move on a server, and you are stuck with having to retype all your settings again. - Most likely the problem will reappear again, since it does not fix the problem.
Now looking deeper into the error, we started looking at event logs – nothing here to help us (let us know if you had any usefull info here for this error). Then we tried various other things, including looking at a snapshot of the memory usage (you can just open taskmgr.exe) and found something surprising. Wspsrv.exe was using more memory handles than all other processes combined on the machine. A memory leak! It has been several years since I ran into a memory leak, it used to be the most common problem for programmers to avoid, but I rarely see them any more. Read the rest of this entry »
Posted in Bugs and Fixes, ISA 2006 | 
Tags: Bugs, How To, ISA, isa server, Kerberos, memory leak, Microsoft, microsoft knowledge base, Negotiate, ntlm | 
No Comments »
How to configure ISA 2006 with FBA for OWA and NTLM for Outlook Anywhere and Autodiscover in Exchange 2007
Configuration of Exchange 2007 with Outlook Web Access (OWA), Outlook Anywhere (OA), ActiveSync and Autodiscover can add grey hair to any system administrator or IT consultant. Then also trying to get different authentication schemes and ISA 2006 to play nice is not making it any easier.
Most Administrators have a wish to configure their environments used externally as securely as possible, including using SSL certificates with HTTPS instead of no encryption with HTTP, and using NTLM authentication instead of Basic authentication. But security is not everything, a userfriendly interface like Forms Based Authentication (FBA) is a must to avoid user iritation and support calls.
However getting FBA and NTLM to work together in ISA with Exchange 2007 can be quite scary, so lets go deeper and find out what we need to be aware of to get it working.
Posted in Exchange 2007, ISA 2006 |
Tags: CAS, Exchange, Exchange 2007, FBA, Forms Based Authentication, How To, ISA, Microsoft, Outlook Anywhere, Outlook Web Access, OWA, RPC over HTTPS |
2 Comments »
How to publish a website with both Anonymous and Forms Based Authentication in ISA 2006
We had a customer asking for the main part of their Sharepoint website to be accessible from the public with anonymous access, and still have a part of the website require authentication thru Forms Based Authentication (FBA) in ISA 2006 firewall. Since ISA can only have one listener on a website, and the authentication is set on the listener, this was a little bit tricky to solve.
The solution however is extremely simple and I hope this little bit of information will save someone else some time. Read the rest of this entry »
Posted in ISA 2006, Sharepoint 2007 |
Tags: FBA, Forms Based Authentication, How To, ISA, Sharepoint, Tips and Tricks |
No Comments »