Release Notes

Microsoft Internet Security and Acceleration Server 2000 Feature Pack 1

Contents

1.0 Introduction

The Microsoft® Internet Security and Acceleration (ISA) Server 2000 Feature Pack 1 adds significant security value to Microsoft® Exchange Server and Microsoft® Internet Information Services (IIS) publishing scenarios. The feature pack includes tools and additional features that enable you to better protect the servers that you make publicly available. The feature pack also includes a detailed set of documents, which step you through the process of publishing these servers.

Read this document carefully before installing the feature pack software.

Back to Contents

2.0 System Requirements

ISA Server Feature Pack 1 can be installed only on computers running a licensed version of ISA Server 2000, with ISA Server Service Pack 1 (SP1) installed. For information on downloading SP1, see the ISA Server Web site (http://www.microsoft.com/).

ISA Server Feature Pack 1 runs on Microsoft® Windows® 2000 Server and Windows Server 2003. For computers running Windows 2000 Server, Service Pack 3 (SP3) is recommended.

Note:

• To learn about ISA Server and Windows Server 2003, see http://go.Microsoft.com/fwlink/?linkid=4833 (http://www.microsoft.com/).

Back to Contents

3.0 Installing the ISA Server Feature Pack

To install the ISA Server Feature Pack

1. At the command prompt, type path\isafp1.exe.
2. Follow the on-screen instructions.

To install ISA Server Feature Pack 1 in unattended mode, type the following at a command prompt:

isafp1.exe -q

Notes:

• Before installing the ISA Server Feature Pack 1, close all active MMC applications.
• During installation, the ISA Server services will be stopped and restarted.
• ISA Server Feature Pack 1 is installed in the ISA Server installation directory.
• You must install ISA Server Feature Pack 1 on all array members.

Back to Contents

4.0 Removing the ISA Server Feature Pack

Be sure to uninstall any hot fixes or packages that depend on ISA Server Feature Pack 1 before uninstalling.

To remove the ISA Server Feature Pack

1. Click Start, point to Settings, click Control Panel, and then double-click Add/Remove Programs.
2. In Add/Remove Programs, click Microsoft ISA Server 2000 Updates, and then click Change.
3. In ISA Hot Fixes Uninstall, select Feature Pack 1, and then click Remove.

To remove ISA Server Feature Pack 1 in unattended mode, type the following at a command prompt

ISA Server installation directory\$UNINSTALL_ISA_SP$\SP_1\hotfix.exe -q -UFP

Back to Contents

5.0 Limitations and Known Issues

5.1 Installation Issues

1. When remotely administering ISA Server, you must also install ISA Server Feature Pack 1 on the remote administration computer.
2. You must install ISA Server Feature Pack 1 on all array members. Otherwise, when the Link Translator Web filter is enabled, if you restart services on array members on which the feature pack is not installed, this event message appears, once every hour:
   ISA Server failed to load some_Web_Filter.DLL. The error code shown in the data area of the event properties indicates the cause of the failure.
3. Configuration information for ISA Server Feature Pack 1 installed in array configurations is stored in Active Directory. Active Directory replicates the information to all other domain controllers. ISA Server Feature Pack 1 configuration is updated when the relevant domain controller is replicated. To determine if replication has finished, open ISA Management on any other array member and check if the Link Translator Web filter appears.
   After you install ISA Server Feature Pack 1 on the first array member, it is recommended that you wait for the Active Directory replication process to complete before installing on other array members.

5.2 Link Translator Web Filter Issues

1. When a Web filter fails to load properly, an appropriate event message is logged to the event viewer. All ISA Server services are restarted, despite the failure. If you want an additional precaution for specific Web filters (including the Link Translator Web filter) that monitor for security, create an alert for the Missing installation component or Component load failure event. This will stop the ISA Server services. For instructions on configuring alerts, see ISA Server on-line Help.

5.3 Microsoft® Exchange Outlook® Web Access (OWA) Publishing Issues

1. Before using the OWA publishing wizard on Small Business Server computers, be sure to run the Small Business Server Internet Connection Wizard.

5.4 RPC Issues

1. When RPC encryption enforcement is enabled, sent messages may remain in the Outbox on the Microsoft® Outlook® client, until the user clicks a folder or mail message in Outlook. Typically, synchronizing the mailbox (using Send/Receive) does not function properly. This is a known issue in Outlook.
2. Mail clients must be configured correctly prior to enabling the RPC encryption enforcement feature, as explained in the on-line help. Failure to do so may result in problems when accessing mailboxes and configuring client profiles.
   Specifically, verify that the client belongs to the same domain as the Exchange server. Alternatively, if the client belongs to a workgroup, then on the Advanced tab of Profile properties, set network security to None. The user will be prompted to supply credentials when logging in.
3. You must use the advanced view to delete RPC protocol definitions.
4. When you remove ISA Server Feature Pack 1, the RPC protocol definition that was added to support outbound RPC is not removed, if it is being used by a protocol rule. The protocol rule is not functional, however.

Back to Contents

6.0 Documentation

Additional documentation, describing common Exchange Server and IIS Server deployment scenarios, is available in the docs.zip file. After you unzip the file, open index.htm and follow the links to view the desired documents.

Back to Contents

Back to Contents