Use the concept of role-based access control to delegate administrative access to an ISA Server and to other network resources. Use the Remote Desktop Protocol (RDP) to administer an ISA Server when possible, rather than using the ISA Administrator MMC Console remotely. Use the lockdown mode functionality of an ISA Server to protect an ISA Server from attacks and Denial of Service attempts. Create groups to correspond with each of the ISA Administrative roles, such as ISA Full Administrator, ISA Basic Monitoring, and ISA Extended Monitoring.
|