Not sure if this is a Sharepoint question or ISA question, but here goes...We have a Sharepoint 2007 site, using ISA 2006 for security. The ISA server is currently configured to use Integrated auth. for local traffic, and Form-Based auth. for external traffic.What we would like to do is have all computers on our local domain network to have the SP site set as the default home page for IE (using GPO, no problem here) without being prompted for credentials. Since it is currently using Integrated auth, there is no problem. Here's the problem - there are certain pages within the SP site that contain sensitive information. What we would like to accomplish is to prompt for credentials when this page is accessed.I don't even know if this is possible with our current setup, but I would appreciate any wisdom that anybody has to offer.

Why do you want this ?People alreade authenticated (automatically).Maybe if you tell me why you want to force a re-authentication i understand.Do users need to autenticate with the same account as their local account ?Is the site/page with the sensitive information in the same sitecollection or reachable under the same hostheader ?Kind regards,Eric van Glabbeek Willing to learn everything about Sharepoint there is to learn. My blog : sharepoint.vanglabbeek.nl

Well, we want the users to be authenticated automatically when browsing to the main Sharepoint page, in order to not disrupt them with a login prompt. There is targeted content on the main page, but nothing confidential. On some subsequent pages, there is confidential content, so in order to provide additional security, we would like to force (re)authentication to view those pages.All authentication is Active Directory based. All pages are in the same site collection.

Hi,You can consolidate the pages or documents in a secure library. On this library, you break inheritance of security and you set appropriate permission.You could also look at audience : http://office.microsoft.com/en-us/sharepointserver/HA101690531033.aspxHope that help,Mario My blog (en français) : http://spcontext.wordpress.com/

when using AD security once authenticated to the portal, you autmatically will be authenticated to all resources you have acces to (at least for 30 minutes = default).You could create a new site collection for this confidential content.Since security is default site collection based, creating a new site collection, will prompt the user to re-authenticate.However, a user can always store his credentials with the browser, so the browser logs in for him/her.So in my opinion this is some kind of "false" security.The best way to really archive this is to use tokens.That way a password remembering browser has no use.But you need to give everyone a token to enter the portal, and i'm not sure if that's what you want.Maybe that auditing is a better principle.Auditing creates logs from every action of a users.Kind regards,Eric van GlabbeekWilling to learn everything about Sharepoint there is to learn. My blog

@ Cyberia RobWere you able to resolve this?Did you try creating a separate site collection for the sensitive data and give "unique permissions" to it. the unique permission can be given to a group or to users who are authorized to view the confidential data?Best regds,LM.