Forefront TMG HTTPS Inspection Issues with SHA256 / CNG Certificates

Posted May 6, 2014

I’d like to share an important issue I discovered recently that many Forefront TMG administrators may be experiencing. The problem affects accessing popular HTTPS websites when the Forefront TMG HTTPS Inspection feature is enabled. As you may know, many public websites were affected by the recent Heartbleed vulnerability. Fortunately, Heartbleed  had

Read More
How to Enable and Disable SSL / TLS Versions on Forefront TMG

Posted May 5, 2014

In my previous article What everyone should know about HTTPS, SSL, TLS and Certificates, I covered the basics of cryptography protocols and I touched lightly on the point that SSL and TLS are generally interchangeable terms referring to the same thing. In this article I will go a little deeper into

Read More
How To Extend Forefront TMG’s Web Protection Services (WPS) After November 30 2012

Posted February 9, 2014

As you probably know, Microsoft stopped selling Forefront TMG as well as its subscription based Web Protection Services in December 2011. Although you can still purchase Forefront TMG through the OEM loophole, there is no way to purchase a new subscription of Web Protection Services. This means that Forefront TMG

Read More
The Ins and Outs of Bi-directional Firewall Rules

Posted November 14, 2013

When I look at firewalls rule sets maintained by other companies, I often notice the same common mistakes. The one is see most often is potentially the worst. I can speculate on a number of reasons how these rules actually get defined and implemented, but it all comes down to

Read More
Forefront TMG Forms Based Authentication Template for Exchange 2013 OWA

Posted October 16, 2013

ForefrontTMGExchange2013OWA_FBA

We’ve created a new mobile friendly Forefront TMG Forms Based Authentication template in the new Exchange 2013 style. Download it here!

Read More
How To Solve “13 The Data Is Invalid” Error in Forefront TMG

Posted October 7, 2013

Last week we had a problem with one of our customers that was trying to access a new web site recently built and hosted at their cloud provider. When running a query in Forefront TMG Logs and Reports view, I found the error below: Failed Connection  Attempt Log type: Web 

Read More
Make The World A Better Place with Fastvue and Microsoft Reputation Services (MRS)

Posted September 18, 2013

Uncle Ben told Peter Parker “With great power comes great responsibility”. With TMG Reporter and Webspy Vantage you gain total visibility of what your users are up to. This allows you to make informed decisions that can be backed up with hard data. One great feature of Forefront TMG is

Read More
How To Recover Forefront TMG From a Corrupt Configuration Database

Posted August 16, 2013

We all know it is good practice to keep regular Forefront TMG configuration backups as they help you recover your deployment quickly and accurately in case of a failure or miss configuration.  There is however a scenario where these backups cannot be restored to bail you out.  When Forefront TMG

Read More
Forefront TMG Configuration Backup Scripts For Standalone and Enterprise Arrays

Posted August 15, 2013

It is good practice to keep regular backups of your Forefront TMG Configuration files. Even if you have a Forefront TMG Array with the configuration in multiple locations, this simply gives you fault tolerance, and should not be regarded as a backup. Backups can be performed manually or automated with

Read More
Understanding Hyper-V CPU Usage (Physical and Virtual)

Posted August 15, 2013

The latest version of Fastvue TMG Reporter 2.1.0.5 has some enhancements when it comes to processing multiple reports.  It will now schedule multiple report jobs sequentially based on the amount of processor cores available to the server. Scheduled reports are now processed sequentially instead of concurrently. For every three CPU

Read More