One of the most popular questions we get regarding the ISA firewall and Exchange Server is how to get transparent authentication for the Outlook client. Most users prefer to store their passwords and don't want to enter their passwords each time they open Outlook. The problem is that if you use basic authentication at the client and at the ISA firewall's Web Listener, you will always need to enter credentials when Outlook starts up.
The solution is to enable NLTM authentication on the client and then configure the ISA firewall to use Kerberos Constrained Delegation. Of course, the devil is in the details. We finish up our Jason Jones lovefest this week with his article on how to make the required configuration changes.
Check Jason's solution at:
Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING documentation | integration | virtualization
MVP — Forefront Edge Security (ISA/TMG/IAG)