Winsec.be

TMG Firewall Services Do Not Start when Installed in Workgroup Array

ISAserver.org Blogs — Tue, 31 Jan 2012 19:17:16 GMT

“Consider the following scenario: You create an array of servers that are running Microsoft Forefront Threat Management Gateway (FTMG) 2010. The server array is in a workgroup. You restart the servers in the array.In this scenario, the FTMG 2010 services Read More......(read more)

How to Bypass the Web Proxy Filter in TMG and ISA Firewalls

ISAserver.org Blogs — Tue, 31 Jan 2012 19:03:26 GMT

It used to be easy – in ISA 2000 you could disable the web proxy redirector (or whatever we called it back then). Now easy? Not so much. Check out this great article on Keith Abluton’s blog on how to do this http://blogs.technet.com/b/keithab/archive Read More......(read more)

Problems when combining UAG TMG and KMS

ISAserver.org Blogs — Tue, 31 Jan 2012 18:56:42 GMT

Consider the following scenario: You have Microsoft Forefront Threat Management Gateway 2010 installed, or you have Microsoft Forefront Unified Access Gateway 2010 installed, on a server that is running Windows Server 2008 R2. You have not activated Windows Read More......(read more)

Congrats to TMG Firewall MVP Jason Jones for His Role as Virtual TSP

ISAserver.org Blogs — Tue, 31 Jan 2012 18:54:37 GMT

Check this out! http://blog.msedge.org.uk/2012/01/first-microsoft-mvp-now-microsoft-v-tsp.html Jason would be my pick for vTSP any day of the week! Congrats Jason! HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder@isaserver Read More......(read more)

How to Customize the UAG Portal

ISAserver.org Blogs — Tue, 31 Jan 2012 18:50:43 GMT

One of the biggest challenges anyone who is responsible for UAG runs into is customization. While the team did a great job putting the platform features together, they left a lot of good film on the cutting floor when they left out the customization pieces Read More......(read more)

Publishing Lync Web Services through UAG

ISAserver.org Blogs — Tue, 31 Jan 2012 18:38:47 GMT

Have you wondered how to publish Lync web services through UAG? A lot of people have. Here’s a short TechNet article on how to do it http://technet.microsoft.com/en-us/library/hh490317.aspx While I’m not sure if “web services” is a codename for “no voice Read More......(read more)

The End of ISA Server

ISAserver.org Blogs — Tue, 31 Jan 2012 18:35:26 GMT

Or as Yuri Diogenes says so poignantly “Goodbye ISA Server”. Find out the end of ISA firewall mainstream on Yuri’s blog at http://blogs.technet.com/b/yuridiogenes/archive/2012/01/22/goodbye-isa-server.aspx HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Read More......(read more)

Migrating from ISA 2006 to TMG Firewalls

ISAserver.org Blogs — Mon, 30 Jan 2012 18:38:26 GMT

With support running out on ISA 2006, it’s time to think about your TMG upgrade. Richard Hicks’ has a ton of tips and tricks to help you with the migration – check it out at http://tmgblog.richardhicks.com/2010/03/20/migrating-from-isa-to-tmg/ HTH Deb Read More......(read more)

Why You Should Upgrade your ISA Firewall to a TMG Firewall

ISAserver.org Blogs — Mon, 30 Jan 2012 18:34:10 GMT

There are a lot of reasons! To see what they are, check out Richard Hicks’ article at http://www.isaserver.org/tutorials/Reasons-Upgrade-IAG-Server-Unified-Access-Gateway.html HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder Read More......(read more)

Users in remote forests cannot change their passwords through ISA Server 2006 or Forefront Threat Management Gateway 2010

ISAserver.org Blogs — Mon, 30 Jan 2012 18:30:53 GMT

“Consider the following scenario: You have a server that is running Microsoft Internet Security and Acceleration (ISA) 2006. You configured a Forms Based Authentication (FBA) listener by selecting HTML Form Authentication on the Authentication tab. The Read More......(read more)

How to Configure UAG to Ignore Invalid Backend Certificates

ISAserver.org Blogs — Mon, 30 Jan 2012 18:26:48 GMT

When testing the UAG server in a lab environment or small pilot project, you might not want to go through the hassle of using valid certificates on the backend servers. How do you do this? Adam Fafels will show you the way in his blog article at: http Read More......(read more)

Fastview for TMG Firewalls

ISAserver.org Blogs — Mon, 30 Jan 2012 18:13:56 GMT

Just found this new software for the TMG firewall. I haven’t had a chance to check it out yet, but if you have, let me know what you think of it and I’ll think about doing a review. From their web site, they state that it provides “real-time network monitoring Read More......(read more)

Clickjacking and UAG

ISAserver.org Blogs — Mon, 30 Jan 2012 18:10:24 GMT

Interesting article on how UAG might be used in a clickjacking exploit and how you can prevent this. Check it out at http://blog.andytang.com/2012/01/clickjacking-and-uag.html HTH, Deb DEBRA LITTLEJOHN SHINDERMVP (Enterprise Security)“MS SECURITY”dshinder Read More......(read more)

Blank User Activity Report if domain or username contains accented characters

ISAserver.org Blogs — Mon, 30 Jan 2012 18:07:34 GMT

Have you noticed that if you run a User Activity Report on your TMG firewall that contains user names with accented characters that the report will end up blank? Me too. The good news is that there is a fix. Check it out on the TMG Firewall Team blog Read More......(read more)

Mastering Microsoft Forefront UAG 2010 Customization

ISAserver.org Blogs — Mon, 30 Jan 2012 18:05:17 GMT

Yay! You can now pre-order the book Mastering Microsoft forefront UAG 2010 from Amazon at http://www.amazon.com/Mastering-Microsoft-Forefront-2010-Customization/dp/184968538X/ref=sr_1_1?ie=UTF8&qid=1327961598&sr=8-1 The book is written by two Read More......(read more)

Magic Quadrant for Identity and Access Governance (dec 2011)

Identity Underground — Thu, 12 Jan 2012 00:11:33 GMT

According to Gartner, “The Identity and Access Governance (IAG) market addresses customer requirements that are beyond identity administration. IAG tools seek to deliver IAM directly to the business or end user, rather than the operational IT administrator Read More......(read more)

Note-to-self: Anatomy Of A Perfect Landing Page

Identity Underground — Wed, 11 Jan 2012 23:22:28 GMT

Every little help makes the difference. For the UG/Bloggers and webmasters amongst us, Arlindo Alves found this article very efficient on analyzing how a landing page should be. Very much worth sharing. It’s simple, easy to follow and to adapt: http: Read More......(read more)

IdentityUnderground Blog: 2011 in review

Identity Underground — Sun, 08 Jan 2012 20:46:58 GMT

The WordPress.com stats helper monkeys prepared a 2011 annual report for this blog. Here’s an excerpt: The concert hall at the Sydney Opera House holds 2,700 people. This blog was viewed about 11,000 times in 2011. If it were a concert at Sydney Read More......(read more)

Remote Access Fails for L2TP VPN Clients when NLB is Enabled on the TMG Firewall

ISAserver.org Blogs — Sat, 31 Dec 2011 10:54:36 GMT

NLB and L2TP/IPsec – can you imagine a more hellacious troubleshooting experience? If you can, then keep it to yourself, I already have enough nightmares In this article, Brett Crane from Microsoft shows you how to solve at least one issue related to Read More......(read more)

TMG Goes Into Lockdown Mode After Switching to Text Logging

ISAserver.org Blogs — Sat, 31 Dec 2011 10:51:26 GMT

Ouch! What’s up with that? Sometime you want or need to switch to text logging to get the information you need in a format that you can work with. In this blog post, the TMG team shows you the problem and a solution. Check it out at: http://blogs.technet Read More......(read more)

The Reasons for the DCA Showing the DA Connection is Broken What Its Actually Working

ISAserver.org Blogs — Sat, 31 Dec 2011 10:42:46 GMT

Every wonder why the DCA shows that your DirectAccess connection is broken when in fact it’s working fine? Check out the answer to this question on the UAG team blog over at: http://blogs.technet.com/b/edgeaccessblog/archive/2011/11/09/on-a-da-client Read More......(read more)

How to Get SSO to SharePoint through UAG with Two Authentication Schemas

ISAserver.org Blogs — Sat, 31 Dec 2011 10:40:34 GMT

“…In this case, two different categories of users gain access to the SharePoint farm via UAG: internal users (while outside of the company network), and partner users. Windows Integrated authentication is used in SharePoint for internal users, while form Read More......(read more)

UAG Web Monitor Shows DirectAccess Configuration Note Healthy

ISAserver.org Blogs — Sat, 31 Dec 2011 10:38:40 GMT

What do you do about that? Check out the problem and the answer over on the UAG team blog at: http://blogs.technet.com/b/edgeaccessblog/archive/2011/12/15/the-uag-directaccess-web-monitor-shows-network-security-as-not-healthy.aspx HTH, Deb DEBRA LITTLEJOHN Read More......(read more)

UAG Well Positioned in Gartner Magic Quadrant for SSL VPNs

ISAserver.org Blogs — Fri, 30 Dec 2011 11:46:58 GMT

“Microsoft has offered SSL VPN support since 2006, based on technology acquired from Whale Communications, starting with the Intelligent Access Gateway (IAG), and followed by the Unified Access Gateway (UAG). Buyers frequently pick UAG to provide secure Read More......(read more)

Richard Hicks Runs Survey on How You Use the Change Description Box

ISAserver.org Blogs — Fri, 30 Dec 2011 11:44:39 GMT

Richard Hicks is running a survey on how you use the Change Description Box in the TMG firewall console. It’s an interesting question, because I’m sure we all use it slightly differently. For example, I use it to keep track of some changes and put detailed Read More......(read more)