Since ISA Server is verified by authentication of customers, the default is Windows integration identity.
Certificate, and the browser Netscape, Mozilla, etc. belongs, and Mozilla, etc. are not supported by Microsoft integration.
So, this is no way to pass the Windows set for these Linux client computers.
Being authenticated. Although basic authentication can be used, this greatly reduces the security of the network.
Sex. Does all clients must install Microsoft's operating system? I am a little unwilling, after some
Into the two ways to solve this problem, so that the Linux customer computer can also pass ISA
Server integration authentication.
method one:
The easiest: Install the latest Firefox (Firefox) browser on Linux, you should have heard it.
In recent times, the wind has a very strong browser, and launched the version of For Linux, it features
One is to support Windows integration authentication. Everyone can download from Huajun
Firefox-0.9-i686-Linux-gtk2 xft-zhcn.tar.gz this package, then run
Unzip the command:
TAR ZXVF Firefox-0.9-i686-Linux-GTK2 Xft-ENCN.TAR.GZ
Generate a Firefox directory in the current directory, enter this directory, run Firefox, Firefox
Main interface
Open the Edit -> Preferences menu, click Connection Settings, the Connection Settings dialog box, will HTTP proxy
The server is set to your ISA Server's web proxy address and port. After the setting is complete, enter a site in the address bar, such as
http://www.isacn.org, bomb
Out of Authentication dialog, enter your username and password, Firefox's authentication method supports basic authentication and Windows integration authentication, before
Linux browser can't continue to connect to this step, or you will not pop up the authentication dialog
Box, or after entering the correct username and password, it is not. Figure 5 is Mozilla 1.2.1
The result of the integration of ISA Server is performed.
Copyright by isacn.org © 2004-2005
http://www.isacn.org
Method Two:
This method is more complex, but the function is more powerful. This is a method of using secondary agents.
NTLMAPS, full name Authorization Proxy Server, translated is a certification proxy server.
The specific implementation steps are explained below.
First download NTLMAPS from the Internet, the latest version is 0.98, NTLMAPS is written in Python language.
Then decompress NTLMAPS, there are several files in the directory after decompression, then modify the configuration file
Server.cfg:
Parent_Proxy: Your ISA Proxy Server Address
Parent_proxy_port: Your ISA Proxy Server Port
User: Your username
Password: Your password
Others maintain default settings. Figure 6, Figure 7.
Copyright by isacn.org © 2004-2005
http://www.isacn.org
After the server.cfg configuration is complete, run python main.py, as shown in Figure 8.
Copyright by isacn.org © 2004-2005
http://www.isacn.org
Then open any browser on Linux, such as REDHAT comes with Mozilla, set the proxy server to 127.0.0.1, the port is 5865, as shown in Figure 9.
Enter the URL of the ISA Chinese Station, look at the picture, normal access? No user name and password are not available
Loss! As shown in Figure 10. In fact, NTLmasP has been integrated with ISA Server to ISA Server.
Authentication.
Copyright by isacn.org © 2004-2005
http://www.isacn.org
The above two methods I passed on RedHat9.0, pay attention, paying only if the Web Agent customers are valid.
