Procedure 6: Creating an array

  • Article

After you install the Configuration Storage server, you can create a firewall array. You will create the array as an enterprise administrator on the Configuration Storage server. This enables you to configure how enterprise policy and array policy work together, before the array is released to the array administrator and populated with servers.

Important

An enterprise administrator can also create arrays and populate them with servers, by running ISA Server installation and choosing Create a New Array on the Array Membership page. The enterprise administrator will be able to limit the types of rules the array administrator can create, but only after the array has been created, and will not be able to limit a type of rule if the array administrator has already created a rule of that type.

This procedure assumes that you are still logged on to the Configuration Storage server as an enterprise administrator.

Procedure Title

  1. On the Configuration Storage server, open ISA Server Management.

  2. Click Arrays. In the task pane, on the Tasks tab, click Create New Array to start the New Array Wizard.

  3. On the Welcome page, provide a name for the new array, such as Main, and then click Next.

  4. On the Array DNS Name page, provide the Domain Name System (DNS) name of the array. This is the name that Firewall clients and Web client will use to connect to the array. Click Next.

  5. On the Assign Enterprise Policy page, from the drop-down menu, select the enterprise policy that will be applied to the new array. The policies to choose from are:

    • The Default Policy, in which no enterprise policy is applied, and only the array policy applies.
    • The Fabrikam FTP Optional Access Policy, which enables client access on HTTP, HTTPS, and FTP, and enables the array administrator to deny FTP as appropriate.
    • The Fabrikam FTP Always Allowed Policy, which enables client access on HTTP, HTTPS, and FTP, and does not enable the array administrator to deny access on FTP.

    Because the main array has the bandwidth to support FTP usage, select Fabrikam FTP Always Allowed Policy, and then click Next.

  6. On the Array Policy Rule Types page, select the types of rules the array administrator is allowed to make. In this scenario, allow the administrator to make allow rules and deny rules, but not publishing rules, because you do not want any publishing to take place on the main array. Click Next.

    Cc302477.c8c154ce-ccd8-47f8-aa63-be7a75ae40c8(en-us,TechNet.10).gif

  7. On the summary page, review the array configuration and then click Finish. When the progress bar indicates that the array has been created, click OK.

  8. After the array has been created, assign array administrator privileges to the main array. In ISA Server Management, right-click the name of the array and select Properties.

  9. On the Assign Roles tab, click Add. Add the user MainArrayAdmin. From the drop-down Role menu, select ISA Server Array Administrator, and then click OK.

  10. Click OK to close the properties page.

  11. In the Firewall Policy details pane, click Apply to apply the changes.

[Topic Last Modified: 10/01/2007]