What's New in ISA Server Software Development Kit

Internet Security and Acceleration Server 2004/2006 SDK

Microsoft Internet Security and Acceleration (ISA) Server 2006 introduces numerous new features and functionalities. Some of the most notable advancements are described on this page.

Link Translation

Web pages returned from a Web server published by an ISA Server Web publishing rule may include links containing the internal names of computers. Because external clients cannot resolve these names, these references will appear as broken links. ISA Server includes a built-in Web filter named Link Translation Filter, which uses mappings to translate internal computer names in links on Web pages to publicly resolvable names. Each mapping translates the internal name (or IP address) of a Web site to the public name (or IP address) of the Web site. For example, a mapping can translate the internal name to the public name. A set of link translation mappings is called a link translation dictionary. When link translation is enabled for a Web publishing rule, a default link translation dictionary is automatically created for the rule.

ISA Server 2006 can automatically add mappings to the link translation dictionary of a Web publishing rule for translating internal names in the links on a Web page returned by a Web server published by one Web publishing rule if those internal names are used in other Web publishing rules that are defined in the same array or in another array in the enterprise.

In addition, the administrator can define explicit mappings that apply to a specific Web publishing rule, mappings that apply to all the Web publishing rules defined in a specific array for cross-site link translation, and mappings that apply to all the Web publishing rules defined in any array in the enterprise for cross-array link translation.

Caching BITS Content

The Background Intelligent Transfer Service (BITS) helps to transfer large amounts of data without degrading network performance. It does this by transferring data in small chunks, utilizing unused bandwidth as it becomes available, and reassembling the data at the destination. BITS also maintains file transfers when a network disconnection occurs, or a computer needs to be restarted. When the network connection is reestablished, BITS will continue where it left off. Any cache rule can be enabled to cache content received using BITS.

Certificate Management

ISA Server 2006 provides means for managing the certificates used for SSL authentication.

Secure Web Publishing and Single Sign On

ISA Server 2006 focuses on secure Web publishing, making your internal Web resources available on the Internet, securely and efficiently. ISA Server  2006 supports enhanced multi-factor authentication (smart cards and one-time passwords), flexible integration with Active Directory using the Lightweight Directory Access Protocol (LDAP) for ISA Server computers belonging to a workgroup, customizable forms-based authentication, and additional authentication delegation (using the NTLM challenge/response authentication protocol, Kerberos constrained delegation, the Simple and Protected Negotiation (SPNEGO) protocol, and RSA SecurID credentials).

The new single sign on (SSO) feature allows you to specify domain names (for example, www.northwindtraders.com or *.contoso.com) for a Web listener that uses forms-based authentication. After a user is authenticated for access to a Web site that matches a domain name specified for SSO in a Web listener, the user can access any other URL containing a matching domain name through the same Web listener without being prompted to present credentials again. In particular, users can move safely from one application to another, without having to reauthenticate. For example, an authenticated user can move securely and seamlessly from Outlook Web Access to a SharePoint site by clicking a link in an e-mail, without reauthenticating.

HTTP Compression

ISA Server 2006 uses the industry standard GZIP and Deflate algorithms, which are built into Microsoft Windows Server 2003 and Windows 2000 Server operating systems and into Microsoft Internet Explorer 6, Internet Explorer 5, and Internet Explorer 4, for HTTP compression. These algorithms compress static files, and optionally perform on-demand compression of dynamically generated responses before sending them over the network. These same algorithms are again used to decompress the static files and dynamic responses on clients that support HTTP 1.1. A client that is configured to use HTTP 1.1 can request compressed content from a Web server. Web servers indicate in their responses whether they support compression.

Publishing Server Farms

ISA Server 2006 provides Web publishing load balancing for deploying farms of Web servers behind ISA Server using session- and IP-based affinity with automatic out-of-service detection.

New Administration COM Elements

For links to the new administration COM elements introduced in ISA Server 2006 to support the features described on this page, see New COM Elements in ISA Server 2006.