Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. You cannot install ISA Server 2004, Enterprise Edition Service Pack 2 in a domain

You cannot install ISA Server 2004, Enterprise Edition Service Pack 2 in a domain

View products that this article applies to.

Symptoms

Consider the following scenario:
  • Active Directory Application Mode (ADAM) is configured on a computer that is part of a domain.
  • Microsoft Internet Security and Acceleration (ISA) Server 2004 array members are members of a workgroup.
In this scenario, you cannot install ISA Server 2004, Enterprise Edition Service Pack 2 (SP2) in the domain.

↑ Back to the top

Cause

This issue occurs because ISA Server 2004, Enterprise Edition SP2 assumes that the connection to the ADAM-based computer was established by using the same credentials that you used to log on to the ISA Server computer.

↑ Back to the top

Workaround

To work around this issue, follow these steps:
  1. Create a local user on the ADAM-based computer. Make sure that the local user name and password that you create on the ADAM-based computer are the same as the user name and password that you use to log on to the ISA Server computer.

    For example, if you log on to the ISA Server computer by using the "MyAdmin" user account and the "IsA@adam" password, create the same user account and password on the ADAM-based computer.
  2. Add the local user account that you created on the ADAM-based computer to the ISA Server Enterprise Administrators group. To do this, follow these steps:
    1. Click Start, point to Programs, point to ADAM, and then click ADAM ADSI Edit.
    2. On the Action menu, click Connect to, and then type 2171 in the Port box.
    3. In the Distinguished name (DN) or naming context box, type CN=FPCConfiguration.
    4. Expand FPCConfiguration, and then expand CN=Roles.
    5. Right-click CN=Administrators, and then click Properties.
    6. Under Attributes, click Member, and then click Edit.
    7. In the Multi-valued Distinguished Name With Security Principal Editor dialog box, click Add Windows Account.
    8. Click Locations, and then click the location that points to the local ADAM-based computer.
    9. In the Enter the object names to select (examples) box, type the account name that you created on the ADAM-based computer by using the computer\account or domain\account format. For example, type ADAM\MyAdmin.
    10. Click OK. The new user name appears in the Multi-valued Distinguished Name With Security Principal Editor dialog box as a member of the ISA Server Enterprise Administrators group.
    11. Click OK two times to return to the ADAM ADSI Edit snap-in.
You can now install ISA Server 2004, Enterprise Edition 2004 SP2.

↑ Back to the top

Keywords: KB915419, kbprb, kbtshoot

↑ Back to the top

Article Info
Article ID : 915419
Revision : 4
Created on : 12/4/2007
Published on : 12/4/2007
Exists online : False
Views : 264