To configure a Web listener to use
authentication for RSA SecurID
In the console tree of ISA Server Management, click
On the Toolbox tab, click Network Objects.
Expand Web Listeners, and then click the applicable Web
On the toolbar beneath Network Objects, click
On the Preferences tab, click
In Method, click SecurID.
To open ISA Server Management, click Start, point to
All Programs, point to Microsoft ISA Server, and then
click ISA Server Management.
For ISA Server 2006 Enterprise Edition, expand
Microsoft Internet Security and Acceleration
Server 2006, expand Arrays, expand
Array_Name, and then click Firewall
For ISA Server 2006 Standard Edition, expand Microsoft
Internet Security and Acceleration Server 2006, expand
Server_Name, and then click Firewall
When you select RSA SecurID authentication, no other
authentication method can be selected.
When RSA SecurID authentication is used, all user requests are
logged with their SecurID logon name in the cs-username field of
the Web Proxy log.
Requests from users authenticated with RSA SecurID
authentication can be identified by the prefix "(SecurID)" in the
Client Username field. For example, (SecurID)Alexei.
If ISA Server is configured with multiple network adapters, and
you create a Web listener with RSA SecurID authentication enabled,
you should explicitly configure the network adapter address through
which ISA Server should connect to the RSA ACE/Server for
authentication purposes. Otherwise, requests requiring
authentication may not be processed as expected by Web publishing
rules using this listener. Specify the IP address in registry key
HKEY_LOCAL_MACHINE\SOFTWARE\SDTI\AceClient\PrimaryInterfaceIP, as a
Microsoft Outlook Web Access cannot be configured to use
SecurID credentials. ISA Server can forward the cookie to the
Outlook Web Access server, but the server will not do anything with