MicrosoftInternet Security and Acceleration Server 2000 Feature Pack 1

brickborderSecurity

Nov 3, 2013 (4 years and 2 months ago)

122 views






Introducing
Microsoft
I
nternet Security
and Acceleration

Server
2000
Feature

Pack

1

enhanced security
and ease of use for Exchange Server
and Internet Information Services (IIS
)
deployments
.

www.microsoft.com/isaserver/fp1




Micros
oft

In
ternet

Security
and

Acceleration Server
2000

Feature

Pack

1

Microsoft Internet Security
and

Acceleration (ISA) Server 2000
Feature Pack 1
delivers
enhanced
security
beyond that of traditional
firewalls for

M
icrosoft
Exchange
Server and Internet Information
Serv
ices

(IIS)
deployments
.

With the increasing use of
e
-
mail and
the Web
for business processes

and
communications
,

enterprises
have

been asking for stronger protection
for their e
-
mail servers and Web
ser
vers.

They also want
simplicity in
administration

while minimizing

security

risk
.

Having a network that is
more
secure and eas
y

to
manage

leads to less server downtime, higher
employee productivity
,

and
greater
protection of
business
-
critical
informatio
n.

ISA

Server

Feature

Pack

1 helps companies
realize these ben
e
fits.


Help
ing

secure

e
-
mail

server
s

ISA Server Feature Pack 1
helps
protect the corporate network from
unwanted e
-
mail.

It does this by
building on
the application
-
layer
inspection
capability of
ISA

Server to
help
filter
out
e
-
mail
on

several
criteria,
including
keywords.

ISA

Server

Feature

Pack

1 also
provides

protection for
remote
Microsoft
Outlook
®

users
who
access

Exchange Server over untrusted
networks without a virtual private
network (VPN).

This leads to higher
productivity
while minimizing
security

risk
.

Previously, remote users could
only use
Exchange
Outlook Web
Access (OWA)
or a VPN connection
for
this purpose
.

Help
ing

s
ecur
e

Web and OWA
servers

ISA Server Feature Pack

1
enhances
the
pro
tect
ion of

Web
servers
and
servers running
OWA from
evolving

types of
I
nternet attacks
.

It h
elp
s

stop

malicious
Web
requests at the
ISA

Server

before they enter the
network.

This protection can
complement existing Web security or
reduce configuration compl
exity by
moving
s
ecurity setting
s

to
the
network edge
.

In addition, ISA

Server

Feature

Pack

1 helps control access
to Web
servers
and
servers running
OWA with improved authentication
,

including
support for
RSA SecurID.

Providing e
ase of use for
administrat
ors

The more complex a system is to
configure, the more likely
it is that
an
error in configuration will cause a
security breach.

In fact, 95

percent

of
security vulnerabilities are a result of
misconfiguration
.
1

ISA

Server
Feature

Pack 1 simplifies the
pr
otection of
internal servers

such as
Exchange and IIS
with
new
wizards
,
scenario walk
-
throughs
,

and
troubleshooting documentation
.

Wizards and scenario walk
-
throughs
make configuration easy

and
new
troubleshooting
documents provide
answers

to the most comm
on
ISA

Server questions.

ISA

Server
Feature Pack 1
also

enables

a
dministrator
s

to easily make intranet
data
available on the Internet
,

eliminating the need to
manually
modify

intranet
W
eb pages.





1

Source: CERT, 2002.


Feature Summary

Benefit

Feature

Help
ing

s
ecur
e

e
-
mail serv
er
s

Help p
rotect
the
network from unwanted e
-
mail



Enhanced SMTP filter

Provide
protection for

remote Outlook e
-
mail without
a VPN



Enhanced Exchange RPC filter

Helping secure

Web and OWA
server
s

Help stop
evolving

types of I
nternet attacks

at the
network

edge



URLScan 2.5 for ISA Server

Help c
ontrol access to Web and OWA servers with
improved authentication



Web authentication for RSA

SecurID



Delegation for RSA SecurID and basic
authentication

Providing e
ase
of use

for
administrators

Simplify
the
protect
ion of Exchange Server and IIS
with easy
-
to
-
use wizards



OWA

W
izard



RPC
F
ilter
C
onfiguration
W
izard

Make intrane
t information available on the I
nternet
with
e
ase



Link
T
ranslator

Find answers to
the
most common ISA

Server
questions



Scenario walk
-
throughs

and
troubleshooting documentation


Feature Descriptions
Help
ing

s
ecur
e

e
-
mail
server
s


Enhanced Simple Mail Transfer
Protocol (SMTP) filter.

Help f
ilter
out e
-
mail based on
the name, size
or extension of an attachment,
sender, domain, keyword
,

and any
SM
TP command and its length with
increased
reliability and
security
.

Enhanced Exchange
R
emote
P
rocedure
C
all (RPC) filter.
ISA

Server
protects

Outlook e
-
mail
communication to Exchange over
untrusted networks without setting
up a VPN.

This
cap
ability has been

enhanc
ed in ISA

Server Feature
Pack 1

to
:



Enforce RPC encryption.

Administrators ca
n now enforce
encryption
of RPC
traffic
between Outlook and
Exchange.



Enable
outbound RPC
communication
.

Before

ISA

Server Feature Pack 1,
Outlook clients behind an
ISA

Ser
ver
were
not able to
access
external Exchange
Servers
.

ISA Server
Feature

Pack 1 now enables
this scenario
.

Help
ing

s
ecur
e

Web and
OWA server
s

URLScan 2.5 for ISA

Server.

Help
p
rotect
Web
servers
a
nd
servers
running
OWA from attacks
that

request unusual ac
tions, have a
large number of characters
,

or are
encoded using an alternate
character set.

Running URLScan on

ISA Server can complement
existing URLScan installations or
reduce configuration complexity by
running
it

at the network edge,
instead of on

every

Web
server
and
server running
OWA in the internal
network.

Web filter for
RSA SecurID
authentication.

This filter enables
strong, two
-
factor RSA SecurID
authentication at ISA

Server for
Web
server
and
server running
OWA.

Delegation for RSA SecurID and
bas
ic authentication.

Delegation
of authentication
helps increase

security by
enabl
ing ISA Server to
authenticate Internet clients instead
of passing the
pre
-
authentication to
the
published

server.
This
delegation
also
e
liminates multiple
login prompts.
Deleg
ation

is
possible with
SecurID

and
basic
(user

name and password)
authentication and
can be

enabled
for each

Web publishing rule.

Providing e
ase of use for
administrators

OWA

W
izard
.

Quickly and easily
c
onfigure
ISA

Server to
help
protect
an
OWA
deployment
.

RPC
F
ilter
C
onfiguration

W
izard.

Provide granular access to RPC
services on the internal network
instead of allowing all RPC traffic
.

Link
T
ranslator.

Some intranet
Web pages may include references
to internal names for
computer
s

that
may

appear as broke
n links

to
users

browsing
from the Internet
.

The link translator
enables

you to
cross
-
reference intranet Web server
locations with
externally available
Web
server

location
s
,
including
translating
HTTP

to
HTTPS
and

vice
versa
.

Scenario walk
-
throughs and
tro
ubleshooting documentation.

Use scenario walk
-
through
s

and
troubleshooting documentation to
easily configure and maintain
Exchange and IIS deployments.


For more information, visit the
ISA

Server Feature Pack 1
Web

site:

www.microsoft.com/isaserver/fp1

Download the ISA

Server
120
-
day
trial software
:

www.microsoft.com/isaserver/
evaluation/trial


The inf ormation contained in this document
repr
esents the current v iew of Microsof t
Corporation on the issues discussed as of the
date of publication. Because Microsof t must
respond to changing market conditions, it should
not be interpreted to be a commitment on the part

of Microsof t, and Microsof t ca
nnot guarantee the
accuracy of any inf ormation presented af ter the
date of publication.


This document is f or inf ormational purposes only.

MICROSOFT MAKES NO WARRANTIES,
EXPRESS OR IMPLIED, IN THIS DOCUMENT.


© 2002 Microsof t Corporation. All rights reserv
ed.

Microsof t, Windows, and Windows NT

are either
registered trademarks or trademarks of Microsof t
Corporation in the United States and/or other
countries.

The names of actual companies and products
mentioned herein may be the trademarks of their
respectiv
e owners.