IAG KBs are Going Live at support.microsoft.com

I’m really glad that after two weeks of long work writing, reviewing, testing and diving into this project the result pays off. The list of IAG KBs is growing at support.microsoft.com as a result of this huge team effort that we have here at Microsoft. It was an amazing work done from all team members….


The Wild Limitation

This post is about a case that I recently worked here in CSS. The problem was that customer has an ISA Server 2004 publishing OWA from Exchange 2007 and he was getting the error below:   500 Internet Server Error – The target principal name is incorrect   Everything was running just fine until they…


The High Availability Catch while Publishing OWA

1. Introduction   Last week I was helping out a friend in our team during a support call where the scenario was really unusual. The topology was similar to the one below:   Figure 1 – Network topology for this sample scenario.   Customer was using two ISA Servers 2006 Standard Edition Single NIC to…


ISA Server 2006 SP1 is Out

The ISA Server 2006 SP1 was release today (couple of minutes ago) and you can download from the link below: http://www.microsoft.com/downloads/details.aspx?FamilyId=D2FECA6D-81D7-430A-9B2D-B070A5F6AE50&displaylang=en   We do have some good articles out there already that talks about the functionalities of this release, review some of them:   Jim Harrison reveals ISA Server 2006 SP1 ISA Server 2006 SP1…


Support for Windows Vista Endpoint Drive Mapping on IAG 2007 SP1

The endpoint drive mapping feature on IAG is a functionality that a lots of administrators wants to use when configuring the IAG Portal due the transparency to the end user. However this functionality still not supported for Windows Vista users, even with IAG 2007 SP1. For more information on this read the IAG 2007 SP1…


Windows XP SP2 prompts to allow traffic while opening IAG 2007 Portal

When the client workstation connects to IAG Portal and the endpoint detection is done, the IAG needs to do some inbound queries to validate client components. The Whale components that are used during the incoming test on IE are called “Whale Add ons”. They are: WhlClnt3.exe, WhlClnt3.WhlCach3.exe, WhlDetect.dll and WhlMgr.dll. The ports that are used…


The Network Design that could bring you down – The Complement

It is always good to listen, step back and let someone else look to the big picture to see if can see what you can’t see. A friend of mine (Jim Harrison) once told me: review that for me, I’m too close to the forest to see the monkeys throwing poop at me. I’m saying…


The Network Design that could bring you down

1. Introduction   Recently I worked in a case where the ISA Server was not used only as an edge firewall but also as main concentrator of “ALL” network traffic. While this could really sound nice in terms of central management and security awareness of the traffic this also imposes other risks in the network…


Kerberos Authentication with ISA Server 2006 using NLB

Due lots of questions on this subject we just published a post on ISA Server Team Blog about this behavior. If you are deploying ISA Server 2006 using NLB and wants to take advantage of IE7 Kerberos Authentication, read this article and see what to expect.


Troubleshooting IAG2007 Authentication Repository

1. Introduction   Last article about authentication repository I explained how to create a LDAPS repository and how to troubleshoot LDAPS authentication repository. This post is pretty much a complement to that because here we will move the troubleshooting further and enables the lower level trace in order to see more details about the authentication…