I've always had mixed feelings about Microsoft ISA server. On one hand, it simplifies MS security mgmt by tying many necessary security items into one management realm. On the other hand, IMHO, it's not as thorough as some of the standalone solutions out there, which I've implemented.
I was talking to a solutions consultant earlier this morning, who said he's working on a squid proxy solution for a customer, and that they are a normally a heavily-biased, pro-MS shop. They're open to his solution, however, their security folks are strongly pushing to be fully ISA-only, thereby making his proposal a tough sell.
He asked me if I have any docs or info from anyone on the 'negative' side of ISA. Does anyone have any feedback to that regard? Again, I personally could go either way, dependent upon the scenario, even though I prefer individualized offerings.
Thanks in advance for any information you might have.
"All men can see these tactics whereby I conquer,
but what none can see is the strategy out of which victory is evolved."
- Sun Tzu, 'The Art of War'
OSCE, OSCP (Former - GPEN, C|EH - both expiring / expired)