Friday, 13 June 2008

Setting default option in ISA logon form to Private Computer

Now, obviously I would not recommend this as best practice, but I was asked if I could configure the default security option in the ISA 2006 logon form to Private Computer instead of Public (despite venting reluctance) to make it easier for users to logon and use persistent cookies to gain access to Office applications from SharePoint without being prompted to sign in again.

So, if you also want to implement this, this is how you do it:

1. Create a new set of forms in the C:\Program Files\Microsoft ISA Server\CookieAuthTemplates folder on the ISA server and change your rules to use these forms instead of the default (see http://technet.microsoft.com/en-us/library/bb794733.aspx for details).

2. Edit each of these files in notepad:

usr_pwd.htm
usr_pwd_pcode.htm
pwd_pcode.htm
pwd_pcode_nxt.htm

3. Find and remove checked="checked" from this line: <td><input id="rdoPblc" type="radio" name="trusted" value="0" class="rdo" onclick="clkSec()" checked="checked" /></td>

It should now read: <td><input id="rdoPblc" type="radio" name="trusted" value="0" class="rdo" onclick="clkSec()" /></td>

4. Find and add the checked="checked" option to the following line: <td><input id="rdoPrvt" type="radio" name="trusted" value="4" class="rdo" onclick="clkSec()" /></td>

It should now read: <td><input id="rdoPrvt" type="radio" name="trusted" value="4" class="rdo" onclick="clkSec()" checked="checked" /></td>

5. Perform this for all four files listed in step 2.

6. Restart the Microsoft Firewall service.

7 comments:

  1. Nice post...I look forward to reading more, and getting a more active part in the talks here, whilst picking up some knowledge as well..
    http://www.royalinfosys.co.in/server-installation/

    ReplyDelete