Windows Server - Enable SSL for web proxy

Asked By luchinator9

14-Sep-07 09:46 AM

I have been told to setup an ISA 2004 as a web proxy for my company.
The goal is to use the ISA box to proxy both 80 and 443 traffic, as
well as to have users authenticate first. However, client machine
connections to the proxy need to be encrypted via SSL, but can then be
unencrypted from the ISA box out to the Internet. In other words, when
a user needs to browse the web, their browser needs to connect to the
proxy (ISA box) via SSL. Upon doing so, the user is challenged for
authentication. Post authentication, the ISA box proxies the web
traffic, unencrypted, out to the Internet. The reason the client
computer connections to the proxy must be encrypted is because clear
text, "Basic" authentication will be configured on the ISA server, but
there is no reason traffic from the proxy to the Internet needs to be
encrypted.

What I have done so far is under Networks, right click "Internal" to
open the "Properties" window. On the "Web Proxy" Tab, I have checked
via the "Authentication" button. In my attempt to secure the proxy
connections to the ISA server, I checked the "Enable SSL" box, have
specified "SSL port 443", and for the "Certificate" box, I click the
configured on this server." Because this is just my test box, I have
the ISA server a CA, and have issued a Certificate.

Why is the cert I created not being seen? I need help setting up this
last piece...encrypting the traffic from the proxy clients to the proxy
server?

ISA Server Discussions

Vista
(1)

NCSE
(1)

Proxies
(1)

MCSSA
(1)

CISSP
(1)

Cert
(1)

MCSE
(1)

MBCS
(1)

David Maskell - BUI Security replied...

18-Sep-07 04:04 AM

ISA Server proxies HTTP only, I am not sure that there is a proxy
specifically for HTTPS available anywhere, as the traffic is encrypted with
random keys which change everytime even during the session, the information
will keep changing, therefore even if it was proxied, it would probably only
be used once in any case.

--
David Maskell
(CISSP, MCSSA, MBCS, CITP, WCE-WS, nCSE, MCSE: NT4,
2000,2003,Messaging,Security, MCTS:SQL 2005,Vista)

Vista Remote Event Log viewer Windows Server

Vista Remote Event Log viewer Windows Server Hi, How can I view event logs on a remote machine running Vista? I can view remote events on machines running XP and 2003 but not Vista. . . . . The Vista machine all have their remote registry service running already. But when I connect to a rpc server is not available. . . . . . Please help. Marshall Windows Server Discussions Windows Server (1) Windows Vista (1) Vista (1) XP (1) VPN (1) WindowsVista (1) Firewall (1) Helen (1) Try disabling the Firewall on Vista and see if this works. If it works , re-enable the firewall and work from there. Alternatively, you can setup Event Forwarding on Vista. - - Jabez Gan Microsoft MVP: Windows Server - File Storage Something strange is going on. On my

cannot connect vista to vista. Windows Server

cannot connect vista to vista. Windows Server I'm not sure if this is the right place to ask, so please let me know. We cannot connect from one vista machine to another vista machine using remote desktop connection. When we try using a domain user account, we ge would be helpful if anyone can shine some light on this problem. These are windows vista enterprise and windows vista ultimate computers added to our domain. We can connect to the machines using local accounts would be, so please suggest your thoughts. Thank you, - -- -- -- -- -- -- -- -- -- - Bill Cochran Windows Terminal Services Discussions Vista (1) YnJlQmlsbA (1) CredSSP (1) Cochran (1) Kuzin (1) Windows (1) Inital (1) MCSE (1 rights. I agree, but we can sign on to the domain on each of the vista machines. In fact, we use these machines for developing software. I found that I can

managing GPO on vista and for vista clients (vista policies) confusion. . Windows Server

managing GPO on vista and for vista clients (vista policies) confusion. . Windows Server I've taken a look at http: / / technet2.microsoft.com / WindowsVista If so. . i'm not sure from where i am copying them either. . . On a vista client. . logged in as domain admin. . do i simply run gpedit.msc and edit the "vista workstation" policy and this will somehow apply to all Vista boxes in our domain? Is there a way to use gpmc.msc and create vista policies? When i run gpmc.msc from the vista box. . it says it is version 1.02 c 2004. . . Shouldnt it be version 2

About SCardEstablishContext in Vista Windows Server

About SCardEstablishContext in Vista Windows Server Hello: i use SCardEstablishContext in vista, but when i use SCardEstablishContext, the program stop, why cannot use SCardEstablishContext in vista? Security Discussions Windows Vista (1) Vista (1) Jesper (1) Protectyourwi (1) Aa374738 (1) Forwarded to Vista Security newsgroup via crosspost. - - ~PA Bear Is SCardEstablishContext returning an error code? If so, have to see what that error code means? - -- Your question may already be answered in Windows Vista Security: http: / / www.amazon.com / gp / product / 0470101555?ie = UTF8&tag = protectyourwi-20 [Great sig, Doctor J! <eg> ] keywords: About, SCardEstablishContext, in, Vista description: Hello: i use SCardEstablishContext in vista, but when i use SCardEstablishContext, the program stop