MSPSS: is there life after the helpdesk?

sharing solutions to uncommon IT problems

ISA 2006 – Pass-through authentication + basic authentication = HTTP 403

leave a comment »

when you try to configure ISA 2006 to publish a website, letting the website itself handle the authentication (i.e. basic authentication), you might get an immediate 403 error.
To achieve what stated above you would usually configure the rule as follows:
Authentication on ISA: no authentication
Authentication delegation: no delegation but client can authenticate
MS tells you that if you get a straight 403 it might mean that:
1. you did not select “allow HTTP authentication” in the advanced settings
2. you did not configure a HTTPS port
They forgot 1 more possibility:
In the users tab you might have “All authenticated users” which is not possible since you are not authenticating on ISA anymore (but that’s the default setting of every website publishing rule).
Put “All users” instead and everything should work fine.


Written by zantoro

October 22, 2012 at 9:30 pm

Posted in ISA

Tagged with ,

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: