You're going to have to edit the logon pages to automatically append the UPN, or put the netbios domain name in front of the username.
If you have multiple domains, you're going to have to have some way for users to select which domain they are trying to logon to. Editing the pages is supported by Microsoft. We've done it here. It's pretty much all Javascript to do this. Scott Kaufman Lead Network Analyst ITT ESI, Inc. From: Don Ely [mailto:[email protected]] Sent: Tuesday, April 14, 2009 12:48 PM To: NT System Admin Issues Subject: ISA 2006 Authentication Page Hey folks, I am trying to make ISA not require the NETBIOS domain name as part of the username when clients login. In other words, no "CONTOSO\JackRyan", but just "JackRyan" for the username. I can do this for a single domain, but cannot seem to make it work for the child domains that are a part of the CONTOSO forest... Setup is like this... ISA 2006 in Workgroup mode in a DMZ. Windows 2003 Native Forest called CONTOSO with three child domains on the internal network. LDAPS authentication is configured from the ISA server to the CONTOSO forest. I am trying to publish MOSS 2007 from the Internal Network to the ISA server in the DMZ which works fine aside from the need to have a domain name specified to logon the user. I understand that out of the box this is how ISA 2006 works, but I have heard rumors there are ways around it so I can just provide a username... Any thoughts? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
