while I do not have any specific experience with this, I would
reccommend that you try the following:
(http://support.microsoft.com/default.aspx?scid=kb;en-us;331062)
1)Start the ISA Server Setup process. You receive the following message:
ISA 2000
ISA 2000 requires Service Pack 1 to function correctly on this version
of Windows. During the installation, error messages and error event logs
regarding compatibility might appear. These messages may be ignored
during the installation. Install Service Pack 1 after this installation
is complete. Service Pack 1 can be downloaded from
http://go.microsoft.com/fwlink/?linkid=4833.
2)Click Continue. When Setup completes the installation of ISA Server,
you receive the following message in the notification area:
Devices or applications disabled
'ISA 2000' will cause Windows to become unstable. Windows has prevented
these drivers from loading. Click here for more details.
3)When Setup is complete, you receive the following message:
Setup has failed to start one or more services. Please examine the event
log for more details.
4)Download and install ISA Server SP1. After you install SP1, you must
restart the ISA Server computer.
5)After the computer restarts, download and install the ISA Server 2000
Required Updates for Windows Server 2003 package. To obtain this update,
view the "ISA Server 2000 Required Updates for Windows Server 2003"
section of this article.
(http://www.microsoft.com/downloads/details.aspx?FamilyID=77d89f87-5205-
4779-b1ab-fc338283b2d9&DisplayLang=en)
The article also suggests that you do this installation with the
computer in question DETACHED from the internet - I also suggest you do
this - so download ALL of the files you will need first - ie - patch
2003, download ISA, ISA SP1, and ISAserver2000 Updates for windows
server 2003 - which is a package linked to above.
Read the article ;) Its a cakewalk compared to making exchange RPC run
on a single port (which is also not too difficult) and I expect it will
work as planned - but someone else might suggest otherwise.
Now on a side note - are you using this as a proxy, firewall, or what?
Im interested in seeing what use for ISA the community has "approved" as
im going to be in need of a proxy soon, and was considering using
Squid... but that wont wash with my microcentric management.
-----Original Message-----
From: Bean, John [mailto:BeanWJ (at) dshs.wa (dot) gov [email concealed]]
Sent: Tuesday, July 29, 2003 12:47 PM
To: focus-ms (at) securityfocus (dot) com [email concealed]
Subject: ISA Server and Win2k3 standard OS
Hello all,
I have been tasked with researching a test implementation of Microsoft's
Firewall/Proxy, Internet Security and Acceleration (ISA) Server, on
Windows
2003 (Win2k3) standard server. Although Win2k3 has several wizards
available to enable services for specific applications, i.e. Web server,
file server, print server, dns server, etc...I don't find a wizard to
prep
it for an installation of ISA. Has anyone had any experience installing
and
configuring ISA on Win2k3 or does anyone have any resource suggestions
for
me?
My thanks in advance,
John
Wm. John Bean, MCSE+I, MCT
Information Technology Security Analyst
Information System Services Division
Department of Social and Health Services
State of Washington
beanwj (at) dshs.wa (dot) gov [email concealed] <mailto:beanwj (at) dshs.wa (dot) gov [email concealed]>
360.902.7670
---
Your network firewall and IDS products do not prevent Web application
attacks - the most common form of online exploitation- resulting in Web
defacement, data theft, sabotage and fraud.
KaVaDo is the only company that provides a complete suite of Web
application security products.
Download a FREE whitepaper on "Security Policy Automation for Web
Applications":http://www.securityfocus.com/Kavado-focus-ms
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
Your network firewall and IDS products do not prevent Web application
attacks - the most common form of online exploitation- resulting in Web
defacement, data theft, sabotage and fraud.
KaVaDo is the only company that provides a complete suite of Web
application security products.
Download a FREE whitepaper on "Security Policy Automation for Web
Applications":http://www.securityfocus.com/Kavado-focus-ms
------------------------------------------------------------------------
---
while I do not have any specific experience with this, I would
reccommend that you try the following:
(http://support.microsoft.com/default.aspx?scid=kb;en-us;331062)
1)Start the ISA Server Setup process. You receive the following message:
ISA 2000
ISA 2000 requires Service Pack 1 to function correctly on this version
of Windows. During the installation, error messages and error event logs
regarding compatibility might appear. These messages may be ignored
during the installation. Install Service Pack 1 after this installation
is complete. Service Pack 1 can be downloaded from
http://go.microsoft.com/fwlink/?linkid=4833.
2)Click Continue. When Setup completes the installation of ISA Server,
you receive the following message in the notification area:
Devices or applications disabled
'ISA 2000' will cause Windows to become unstable. Windows has prevented
these drivers from loading. Click here for more details.
3)When Setup is complete, you receive the following message:
Setup has failed to start one or more services. Please examine the event
log for more details.
4)Download and install ISA Server SP1. After you install SP1, you must
restart the ISA Server computer.
5)After the computer restarts, download and install the ISA Server 2000
Required Updates for Windows Server 2003 package. To obtain this update,
view the "ISA Server 2000 Required Updates for Windows Server 2003"
section of this article.
(http://www.microsoft.com/downloads/details.aspx?FamilyID=77d89f87-5205-
4779-b1ab-fc338283b2d9&DisplayLang=en)
The article also suggests that you do this installation with the
computer in question DETACHED from the internet - I also suggest you do
this - so download ALL of the files you will need first - ie - patch
2003, download ISA, ISA SP1, and ISAserver2000 Updates for windows
server 2003 - which is a package linked to above.
Read the article ;) Its a cakewalk compared to making exchange RPC run
on a single port (which is also not too difficult) and I expect it will
work as planned - but someone else might suggest otherwise.
Now on a side note - are you using this as a proxy, firewall, or what?
Im interested in seeing what use for ISA the community has "approved" as
im going to be in need of a proxy soon, and was considering using
Squid... but that wont wash with my microcentric management.
-----Original Message-----
From: Bean, John [mailto:BeanWJ (at) dshs.wa (dot) gov [email concealed]]
Sent: Tuesday, July 29, 2003 12:47 PM
To: focus-ms (at) securityfocus (dot) com [email concealed]
Subject: ISA Server and Win2k3 standard OS
Hello all,
I have been tasked with researching a test implementation of Microsoft's
Firewall/Proxy, Internet Security and Acceleration (ISA) Server, on
Windows
2003 (Win2k3) standard server. Although Win2k3 has several wizards
available to enable services for specific applications, i.e. Web server,
file server, print server, dns server, etc...I don't find a wizard to
prep
it for an installation of ISA. Has anyone had any experience installing
and
configuring ISA on Win2k3 or does anyone have any resource suggestions
for
me?
My thanks in advance,
John
Wm. John Bean, MCSE+I, MCT
Information Technology Security Analyst
Information System Services Division
Department of Social and Health Services
State of Washington
beanwj (at) dshs.wa (dot) gov [email concealed] <mailto:beanwj (at) dshs.wa (dot) gov [email concealed]>
360.902.7670
------------------------------------------------------------------------
---
Your network firewall and IDS products do not prevent Web application
attacks - the most common form of online exploitation- resulting in Web
defacement, data theft, sabotage and fraud.
KaVaDo is the only company that provides a complete suite of Web
application security products.
Download a FREE whitepaper on "Security Policy Automation for Web
Applications":http://www.securityfocus.com/Kavado-focus-ms
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
Your network firewall and IDS products do not prevent Web application
attacks - the most common form of online exploitation- resulting in Web
defacement, data theft, sabotage and fraud.
KaVaDo is the only company that provides a complete suite of Web
application security products.
Download a FREE whitepaper on "Security Policy Automation for Web
Applications":http://www.securityfocus.com/Kavado-focus-ms
------------------------------------------------------------------------
---
[ reply ]