The current setup is something like this:
The SharePoint 2007 farm is a member of DomainA (2008 R1), as is the ISA2006 array that publishes SharePoint using FBA.
Delegation from the ISA FBA to SharePoint is set to negotiate and Kerberos is set up.
All company user accounts are in DomainA. All access to SP by users is via ISA (odd, I know, but we are bit like a 3<sup>rd</sup> party supplier with a single client in that regard)
This works fine for company users but now I need to allow access to external users.
The 2 requirements I’ve got (and am struggling with) are:
External users should be required to authenticate against ISA first, as it the case for company users
View Complete Post