Article ID: 319380 - View products that this article applies to.
This article was previously published under Q319380
This article has been archived. It is offered "as is" and will no longer be updated.
Microsoft Internet Security and Acceleration (ISA) Server 2000 Feature Pack 1 is a set of features and documentation that is designed to provide enhanced security and ease of use for Microsoft Exchange Server and Internet Information Services (IIS) deployments. With the increasing use of e-mail and the Web for business processes and communications, enterprises require stronger protection for their e-mail servers and Web servers. They also need administrative simplicity with minimal security risk. Having a network that is more secure and easy to manage leads to less server downtime, higher employee productivity, and greater protection of business-critical information. ISA Server Feature Pack 1 helps companies realize these benefits.
Securing E-mail ServersISA Server Feature Pack 1 helps protect the corporate network from unwanted e-mail messages. It does this by building on the application layer inspection capability of ISA Server to help filter e-mail messages by using several criteria, including keywords. ISA Server Feature Pack 1 also provides protection for remote Outlook users who access Exchange Server e-mail messages over untrusted networks without a virtual private network (VPN). This leads to higher productivity while minimizing security risk.
ISA Server Feature Pack 1 includes the following:
Securing Web Servers and OWA ServersISA Server Feature Pack 1 adds URLScan functionality. URLScan enhances the protection of Web servers and Outlook Web Access (OWA) servers from evolving types of Internet attacks. It helps stop malicious Web requests at the ISA Server computer before the requests enter the network. Configuration is also simplified; the administrator can define security settings on the firewall only, instead of having to define the settings on every Web and OWA server in the internal network.
Additionally, ISA Server Feature Pack 1 helps control access to Web and OWA servers by using improved authentication through Basic Delegation and RSA SecureID Authentication.
Basic Delegation of authentication helps increase security by allowing ISA Server to authenticate Internet clients before passing the credentials to the protected server. This also eliminates multiple logon prompts. Delegation is possible with basic authentication (username and password) and can be enabled for each Web publishing rule.
RSA SecureID authentication allows ISA to authenticate Web users to an RSA ACE SecureID authentication server.
Ease of UseISA Server Feature Pack 1 includes the following:
Previous Fixes Included with Feature Pack 1
(http://support.microsoft.com/kb/318319/ )Access Violations Occur in the Web Proxy Service If an Impersonation Failure Occurs
(http://support.microsoft.com/kb/317822/ )FIX: Problems with Web Browser if ISA Server 2000 Is Chained to an Upstream Web Proxy Server
(http://support.microsoft.com/kb/307457/ )Incomplete HTML Pages and Random Authentication Messages Occur When ISA Server Is Chained to an Anonymous Upstream Web Proxy Server
(http://support.microsoft.com/kb/297080/ )Incomplete HTML Pages and Random Authentication Prompts If ISA Server Is Chained to Upstream Proxy
(http://support.microsoft.com/kb/312176/ )Heavy NTLM Authentication Traffic Occurs Between Internet Explorer and the Proxy Server
(http://support.microsoft.com/kb/318005/ )ISA Firewall Service Cannot Start with More Than 85 IP Addresses on the External Network Adapter
(http://support.microsoft.com/kb/319374/ )Web Proxy Service Stops Responding
(http://support.microsoft.com/kb/321846/ )Incorrect Canonicalization in Rules Engine
(http://support.microsoft.com/kb/323889/ )Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker's Choice
(http://support.microsoft.com/kb/319375/ )The CERT_CONTEXT Structure Variable Is Not Available for Web Filters in ISA
(http://support.microsoft.com/kb/319376/ )How to Automatically Authenticate a User Against All Trusted Domains in ISA
(http://support.microsoft.com/kb/326116/ )FIX: Cannot Renew DHCP Assigned IP Address on External ISA Interface
(http://support.microsoft.com/kb/321219/ )FIX: Server Publish May Fail on Dial-up Links
(http://support.microsoft.com/kb/319377/ )FIX: ISA Server Blocks Incoming Traffic Although a Valid Server Publishing Rule Exists
(http://support.microsoft.com/kb/331063/ )Macintosh Outlook Clients Cannot Connect to Exchange Server Through Internet Security and Acceleration Server