Configure a Web listener to use authentication for RSA SecurID

To configure a Web listener to use authentication for RSA SecurID

Notes

To open ISA Server Management, click Start, point to All Programs, point to Microsoft ISA Server, and then click ISA Server Management.
For ISA Server 2006 Enterprise Edition, expand Microsoft Internet Security and Acceleration Server 2006, expand Arrays, expand Array_Name, and then click Firewall Policy.
For ISA Server 2006 Standard Edition, expand Microsoft Internet Security and Acceleration Server 2006, expand Server_Name, and then click Firewall Policy.

Important

When you select RSA SecurID authentication, no other authentication method can be selected.
When RSA SecurID authentication is used, all user requests are logged with their SecurID logon name in the cs-username field of the Web Proxy log.
Requests from users authenticated with RSA SecurID authentication can be identified by the prefix "(SecurID)" in the Client Username field. For example, (SecurID)Alexei.
If ISA Server is configured with multiple network adapters, and you create a Web listener with RSA SecurID authentication enabled, you should explicitly configure the network adapter address through which ISA Server should connect to the RSA ACE/Server for authentication purposes. Otherwise, requests requiring authentication may not be processed as expected by Web publishing rules using this listener. Specify the IP address in registry key HKEY_LOCAL_MACHINE\SOFTWARE\SDTI\AceClient\PrimaryInterfaceIP, as a string value.
Microsoft Outlook Web Access cannot be configured to use SecurID credentials. ISA Server can forward the cookie to the Outlook Web Access server, but the server will not do anything with it.