An update is available that lets you enable an alternative cookie authentication handler string for forms-based authentication. Therefore, the front-end computer can use the "cookieauth.dll" string in the URL of the Web requests. The back-end computer can use the "FBAHANDLER.DLL" string in the URL of the Web requests.
Changes on the back-end ISA Server computer
Follow these steps on the back-end computer that is running ISA Server 2006:
- Apply the hotfix package that is described in the following Microsoft Knowledge Base article:
943215�
Description of the ISA Server 2006 hotfix package: October 7, 2007
- Start Notepad.
- Copy and then paste the following text into Notepad.
''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
' Copyright (c) Microsoft Corporation. All rights reserved.
' THIS CODE IS MADE AVAILABLE AS IS, WITHOUT WARRANTY OF ANY KIND. THE ENTIRE
' RISK OF THE USE OR THE RESULTS FROM THE USE OF THIS CODE REMAINS WITH THE
' USER. USE AND REDISTRIBUTION OF THIS CODE, WITH OR WITHOUT MODIFICATION, IS
' HEREBY PERMITTED.
''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
Const SE_VPS_GUID = "{143F5698-103B-12D4-FF34-1F34767DEabc}"
Const SE_VPS_NAME = "UseAltExtensionRequestIdentifier"
Const SE_VPS_VALUE = true
Sub SetValue()
' Create the root object.
Dim root ' The FPCLib.FPC root object
Set root = CreateObject("FPC.Root")
'Declare the other objects needed.
Dim array ' An FPCArray object
Dim VendorSets ' An FPCVendorParametersSets collection
Dim VendorSet ' An FPCVendorParametersSet object
' Get references to the array object
' and the network rules collection.
Set array = root.GetContainingArray
Set VendorSets = array.VendorParametersSets
On Error Resume Next
Set VendorSet = VendorSets.Item( SE_VPS_GUID )
If Err.Number <> 0 Then
Err.Clear
' Add the item
Set VendorSet = VendorSets.Add( SE_VPS_GUID )
CheckError
WScript.Echo "New VendorSet added... " & VendorSet.Name
Else
WScript.Echo "Existing VendorSet found... value- " & VendorSet.Value(SE_VPS_NAME)
End If
Err.Clear
VendorSet.Value(SE_VPS_NAME) = SE_VPS_VALUE
If Err.Number <> 0 Then
CheckError
Else
VendorSets.Save false, true
CheckError
If Err.Number = 0 Then
WScript.Echo "Done with " & SE_VPS_NAME & ", saved!"
End If
End If
End Sub
Sub CheckError()
If Err.Number <> 0 Then
WScript.Echo "An error occurred: 0x" & Hex(Err.Number) & " " & Err.Description
Err.Clear
End If
End Sub
SetValue
- Save the file as a Microsoft Visual Basic script file by using the .vbs file name extension. For example, use the following name to save the file:
UseAltExtensionRequestIdentifier.vbs
- Open a command prompt, move to the location in which you saved the UseAltExtensionRequestIdentifier.vbs file, and then type the following command:
cscript UseAltExtensionRequestIdentifier.vbs
Changes on the front-end ISA Server computer
On the front-end computer, create a link translation mapping in the Web publishing rule to translate "/cookieauth.dll" to "/FBAHANDLER.DLL." To do this, follow these steps:
- Open the ISA Server Management console.
- In the console tree, expand Microsoft Internet Security and Acceleration Server 2006.
- If you are running ISA Server 2006 Enterprise Edition, expand Arrays, and then expand the node that corresponds to the array. If you are running ISA Server 2006 Standard Edition, expand the node that corresponds to the front-end computer.
- Click Firewall Policy.
- Right-click the Web publishing rule, and then click Properties.
- On the Link Translation tab, make sure that the Apply link translation to this rule check box is selected, and then click Configure.
- In the Locally Defined Mappings dialog box, click Add.
- In the Replace this text box, type /cookieauth.dll.
- In the With this text box, type /FBAHANDLER.DLL.
- Click OK three times.
- Click Apply.