How to Prevent Users from Accessing Unauthorized Websites on the ISA Server
Create a list of blocked websites., Enable the list of blocked websites., Verify the websites are blocked and test your work.
Step-by-Step Guide
-
Step 1: Create a list of blocked websites.
From your computer, click on the Start menu, hover over Programs, click on "Microsoft ISA Server," and select "ISA Management" to display the ISA Management options window.
Next to Servers and Arrays, click on the plus symbol to expand the field and locate your server name.
Next to your server name, click on the plus symbol to expand the field.
Click on the plus symbol to expand Policy Elements.
Under Policy Elements, right-click on the Destination Sets folder to display a sub-menu.
Point over New and select "Set." The New Destination Set window will appear.
Next to the Name field, give a name to your list of blocked websites, such as "Blocked Websites" and add an optional description that may include time and date details or a further description of the websites being blocked.
Under the section for "Include these destinations," click on the "Add" button.
As an administrator, you will have the option to manually add websites one by one, or enter a range of IP addresses, depending on your preference.
You also have the option to enter a specific directory by typing the path for it under the "Path" field.
Click "Ok" to finish.
After clicking "Ok," you will return to the New Destination Set window and see the name of the websites or IP addresses you entered.
Click "Ok" again to close the New Destination Set window. -
Step 2: Enable the list of blocked websites.
Click on the plus symbol to expand Access Policy.
Under Access Policy, right-click on the Site and Content Rules folder to display a sub-menu.
Point over New and select "Rule." The New Site and Content Rule Wizard window will appear.
Under the "Site and content rule name" field, create a name such as "Blocked Websites" and click "Next." On the Rule Action screen under the section "Response to client requests for access," select the "Deny" radio button and click "Next" to proceed.
On the Rule Configuration screen, click "Deny Access Based on Destination," and click "Next." On the Destination Sets screen under "Apply this rule to," select "Specified Destination Set" from the drop-down menu.
In the "Name" list, you will see the name of the list you created for the blocked websites.
Make sure the correct name is chosen and click "Next." A summary screen will appear listing the configuration details of the rule you just created.
Click "Finish" to close the Wizard and return to the ISA Management window.
In the window pane on the right, you will see the new rule you just created. , To make sure the websites you designated have been properly blocked, use any browser that points to the ISA server and try to access one of the unauthorized websites.
You should be prevented from accessing the website and will receive an error message from the ISA server. -
Step 3: Verify the websites are blocked and test your work.
Detailed Guide
From your computer, click on the Start menu, hover over Programs, click on "Microsoft ISA Server," and select "ISA Management" to display the ISA Management options window.
Next to Servers and Arrays, click on the plus symbol to expand the field and locate your server name.
Next to your server name, click on the plus symbol to expand the field.
Click on the plus symbol to expand Policy Elements.
Under Policy Elements, right-click on the Destination Sets folder to display a sub-menu.
Point over New and select "Set." The New Destination Set window will appear.
Next to the Name field, give a name to your list of blocked websites, such as "Blocked Websites" and add an optional description that may include time and date details or a further description of the websites being blocked.
Under the section for "Include these destinations," click on the "Add" button.
As an administrator, you will have the option to manually add websites one by one, or enter a range of IP addresses, depending on your preference.
You also have the option to enter a specific directory by typing the path for it under the "Path" field.
Click "Ok" to finish.
After clicking "Ok," you will return to the New Destination Set window and see the name of the websites or IP addresses you entered.
Click "Ok" again to close the New Destination Set window.
Click on the plus symbol to expand Access Policy.
Under Access Policy, right-click on the Site and Content Rules folder to display a sub-menu.
Point over New and select "Rule." The New Site and Content Rule Wizard window will appear.
Under the "Site and content rule name" field, create a name such as "Blocked Websites" and click "Next." On the Rule Action screen under the section "Response to client requests for access," select the "Deny" radio button and click "Next" to proceed.
On the Rule Configuration screen, click "Deny Access Based on Destination," and click "Next." On the Destination Sets screen under "Apply this rule to," select "Specified Destination Set" from the drop-down menu.
In the "Name" list, you will see the name of the list you created for the blocked websites.
Make sure the correct name is chosen and click "Next." A summary screen will appear listing the configuration details of the rule you just created.
Click "Finish" to close the Wizard and return to the ISA Management window.
In the window pane on the right, you will see the new rule you just created. , To make sure the websites you designated have been properly blocked, use any browser that points to the ISA server and try to access one of the unauthorized websites.
You should be prevented from accessing the website and will receive an error message from the ISA server.
About the Author
Gerald Anderson
A seasoned expert in technology and innovation, Gerald Anderson combines 16 years of experience with a passion for teaching. Gerald's guides are known for their clarity and practical value.
Rate This Guide
How helpful was this guide? Click to rate: