Question about Microsoft ISA Server 2004 (e84-00526) for PC

1 Answer

ISA problem I need to configure an Isa server for 2 groups on my AD. the problem is when I define a deny policy for 1 group, Isa apply it to all users even administrator !!! Do you have any idea about this problem?!

Posted by on

1 Answer

  • Level 1:

    An expert who has achieved level 1.

    Corporal:

    An expert that hasĀ over 10 points.

    Problem Solver:

    An expert who has answered 5 questions.

  • Contributor
  • 11 Answers

Block Inheritance settings to stop this replication

Posted on Nov 26, 2009

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

2 Answers

How to Configure AAA for Cisco Devices?


Note:The Cisco devices here include all Cisco products, like Cisco routers, Cisco catalyst switches, etc. Also apply to the new 2960XR switch, we configured AAA for the WS-C2960XR-48TS-I and WS-C2960XR-24TS-I. here is the procedure:
http://www.discountroutercenter.com/how-to-configure-aaa-for-cisco-devices/

Dec 02, 2014 | Cisco Network Software & Management Tools

1 Answer

How to remote client winxp by using windows 2003 server with ISA2004 server


you need to configure a policy in ISA to allow 3389 port for RDP.
you can then connect to winxp client using mstsc utility.

Nov 12, 2009 | Microsoft ISA Server 2004 (e84-00526) for...

1 Answer

"error starting the service Backup Exec & media service"


This is most likely caused by a change in the user acount password that you created the profile with. Under network select Logon account Managment. in here you will see the accounts that you used to login to the Domain. (AD) Consider setting up separate accounts (backup, etc) for these services & scheduled jobs, rather than using the admin or personal accounts. This way you can still change the admin account password on a regular basis & maintain security, but not have to go the hassle of updating all of these at each change. You may also opt to set these specific accounts so that the passwords do not expire automatically so that you do not have to deal with that scenario.

Jan 21, 2009 | Veritas Backup Exec 10 for Windows Servers...

1 Answer

Ristricted logging onto server when server is off


Hi
Thanks for the background info, this makes it easier for me to see what you need.
You need to disable your guest account if you havnt already done so.
The user is logging on with a cached version of the logon information, this is useful for when the server goes down but not in your case as you need to prevent this.
Another worrying aspect is that you allow all your users to log on using the same password. Very bad from a security aspect anyhow. It is better to change at least every 30 days. If they moan they will get used to it soon enough.
Go into group policy again and computer configuration>windows settings>security settings>local policies>security options and look for interactive logon:number of previous logons to cache - set this to 0. If the domain controller is not available and the logon info is not cached they cannot logon to domain.
Group policy can be overruled at the client end if they have admin priviledges so you may have to set this on the client pc also. But you need to test to see if it is required there. I have not used that particular policy but it should be ok just on the server. Your users dont have admin rights do they? Anyway good luck. You can set this by applying it to an OU or domain wide but if you want to target just this one pc then maybe if you put it in its own ou and apply it just there.
You need to create new policies rather than modifying the domain one and keep each policy for specific purposes so that applying them to ou's is easier, ie internet options policy, firewall policy, working hours policy etc.
Regards
Julie

Mar 26, 2008 | Network Software & Management Tools

1 Answer

ISA 2004 - DHCP + MAC Address


This would need to be configured on whatever system it is that is serving DHCP. Assuming it is the same box as ISA Server, it would then have to be running Microsoft DHCP. In Microsoft's DHCP, you can assign reservations for specific MAC addresses. You need to open the DHCP management console, then expand out the server name. If the server name is not listed, you will need to connect to the server hosting the DHCP service by right clicking on the root node, etc.

Assuming you have a connection to the DHCP server and can see the zone you are referring to (172.16.2.0/23 which contains all addresses in the subnet to which you refer), under the zone, right click on Reservations and choose New Reservation. Enter a name, the specific IP address for that machine and the MAC address. That's all there is to it. Next time that machine requests an address from the DHCP server, it will issue the address you configured. It will not issue it to any other machine.

Dec 11, 2007 | Microsoft ISA Server 2004 (e84-00526) for...

1 Answer

Firewall is not configered is linux centos


try and go for it..all d best...


**********
Use yum command as follows:
# yum install squid
Output:
Loading "installonlyn" plugin Setting up Install Process Setting up repositories Reading repository metadata in from local files Parsing package install arguments Resolving Dependencies --> Populating transaction set with selected packages. Please wait. ---> Package squid.i386 7:2.6.STABLE6-4.el5 set to be updated --> Running transaction check Dependencies Resolved ============================================================================= Package Arch Version Repository Size ============================================================================= Installing: squid i386 7:2.6.STABLE6-4.el5 updates 1.2 M Transaction Summary ============================================================================= Install 1 Package(s) Update 0 Package(s) Remove 0 Package(s) Total download size: 1.2 M Is this ok [y/N]: y Downloading Packages: Running Transaction Test Finished Transaction Test Transaction Test Succeeded Running Transaction Installing: squid ######################### [1/1] Installed: squid.i386 7:2.6.STABLE6-4.el5 Complete! Squid Basic Configuration Squid configuration file located at /etc/squid/squid.conf. Open file using a text editor:
# vi /etc/squid/squid.conf
At least you need to define ACL (access control list) to work with squid. The defaults port is TCP 3128. Following example ACL allowing access from your local networks 192.168.1.0/24 and 192.168.2.0/24. Make sure you adapt to list your internal IP networks from where browsing should be allowed:
acl our_networks src 192.168.1.0/24 192.168.2.0/24
http_access allow our_networks
Save and close the file. Start squid proxy server:
# chkconfig squid on
# /etc/init.d/squid start
Output:
init_cache_dir /var/spool/squid... Starting squid: . [ OK ] Verify port 3128 is open:
# netstat -tulpn | grep 3128
Output:
tcp 0 0 0.0.0.0:3128 0.0.0.0:* LISTEN 20653/(squid) Open TCP port 3128 Finally make sure iptables is allowing to access squid proxy server. Just open /etc/sysconfig/iptables file:
# vi /etc/sysconfig/iptables
Append configuration:
-A RH-Firewall-1-INPUT -m state --state NEW,ESTABLISHED,RELATED -m tcp -p tcp --dport 3128 -j ACCEPT
Restart iptables based firewall:
# /etc/init.d/iptables restart
Output:
Flushing firewall rules: [ OK ] Setting chains to policy ACCEPT: filter [ OK ] Unloading iptables modules: [ OK ] Applying iptables firewall rules: [ OK ] Loading additional iptables modules: ip_conntrack_netbios_n[ OK ] Client configuration Open a webbrowser > Tools > Internet option > Network settings > and setup Squid server IP address and port # 3128.
See also You may find our previous squid tips useful:

Nov 26, 2007 | Network Software & Management Tools

2 Answers

Doubt in Accessing network computer.....


It simple, you need to configure the security option in sharing folders. These are the following procedure below:

First, right click the folder you want to share and select sharing and security.

Second, click permissions command button. At permissions tab you need to remove group or user names appeared as everyone.

Third, after removing you need to add new account which will specify the only user permitted to access the shared folder.

Fourth, click Advance command button and click Find Now where all the available administrator accounts and users are displayed below.

Fifth, select user account which you are desire to use it in accessing the file by highlighten it. Then press OK and another OK button to finalized the settings.

Lastly, you can find an option allow and deny permission you can choice at any what you what to do it. Then click Apply and Ok button.

That's all, Hope you will rate my solution as SOLVED. That's simple instruction hope you like it.

Good luck.

Nov 20, 2007 | Cisco VPN 3000 (LL-VPN3000) for PC

Not finding what you are looking for?
Microsoft ISA Server 2004 (e84-00526) for PC Logo

Related Topics:

131 people viewed this question

Ask a Question

Usually answered in minutes!

Top Microsoft Network Software & Management Tools Experts

Jax Planet
Jax Planet

Level 2 Expert

921 Answers

Steve Sweetleaf
Steve Sweetleaf

Level 3 Expert

1128 Answers

Andrew Taylor
Andrew Taylor

Level 3 Expert

10628 Answers

Are you a Microsoft Network Software and Management Tool Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...