Quantcast
Channel: Forefront TMG and ISA Server forum
Viewing all 3822 articles
Browse latest View live

Error in generating report in TMG 2010

November 24, 2013, 11:24 pm
$
0
0

Error :0xc0040432


The report 12.51 could not be generated. Report Server error information: System.Web.Services.Protocols.SoapException: The item '/ISA2008 Reports/Summary_ServerParticipation' cannot be found. ---> Microsoft.ReportingServices.Diagnostics.Utilities.ItemNotFoundException: The item '/ISA2008 Reports/Summary_ServerParticipation' cannot be found.
   at Microsoft.ReportingServices.WebServer.ReportExecution2005Impl.LoadReport(String Report, String HistoryID, ExecutionInfo2& executionInfo)
   at Microsoft.ReportingServices.WebServer.ReportExecutionService.LoadReport(String Report, String HistoryID, ExecutionInfo& executionInfo).

The error occurred on object 'Reports' of class 'Reports Configuration' in the scope of array 'creative-proxy'.

Please resolve the above error.

Search

Too many Audit Failure in TMG. Microsoft-Windows-Security-Auditing: 4625

November 13, 2013, 9:28 am
$
0
0
Oursecurity loghas manyaudit failureinTMG.Butwe are unable toidentify exactly what is goingto generateso manyerrorsfollowed.We know whois the user whois generatingthese logs,butwe can notidentifywhichis beingmade​​theserequests, it seems thatwouldowntheTMG.

Microsoft-Windows-Security-Auditing: 4625

An account failed to log on.

Subject:
 Security ID:  NETWORK SERVICE
 Account Name:  COMPANYFRW01$
 Account Domain:  COMPANY
 Logon ID:  0x3e4

Logon Type:   3

Account For Which Logon Failed:
 Security ID:  NULL SID
 Account Name:  user.user
 Account Domain:  company.local

Failure Information:
 Failure Reason:  Unknown user name or bad password.
 Status:   0xc000006d
 Sub Status:  0xc000006a

Process Information:
 Caller Process ID: 0xcf8
 Caller Process Name: C:\Program Files\Microsoft Forefront Threat Management Gateway\wspsrv.exe

Network Information:
 Workstation Name: COMPANYFRW01
 Source Network Address: -
 Source Port:  -

Detailed Authentication Information:
 Logon Process:  Advapi  
 Authentication Package: Negotiate
 Transited Services: -
 Package Name (NTLM only): -
 Key Length:  0

This event is generated when a logon request fails. It is generated on the computer where access was attempted.

The Subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The Logon Type field indicates the kind of logon that was requested. The most common types are 2 (interactive) and 3 (network).

The Process Information fields indicate which account and process on the system requested the logon.

The Network Information fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
 - Transited services indicate which intermediate services have participated in this logon request.
 - Package name indicates which sub-protocol was used among the NTLM protocols.
 - Key length indicates the length of the generated session key. This will be 0 if no session key was requested.

need a better policy or configuration

November 24, 2013, 11:05 pm
$
0
0

Hi
here is what i have:
1-domain functionality level 2008
2-TMG VERSION 7.0.7
3-50 users
and what i need to do:
1-blocing some users from accessing internet
2-limiting they're bandwidth according to compony policies for each organization units
3-limiting they're traffic according to compony policies for each organization units


and what i have done:


1-users need to use a pptp vpn connection to TMG server to access internet
2-bsplitter is handeling the bandwidth and trafik limits
3-users that shouldent have access to internet are not in the "vpn users" group


problem:


1-users that doesnt have access to internet is just using the other users credentials that have access to internet

and passing compony rules.
2-users that has access to internet is using they're account on other devices at the same time (i need them to use it only at 1device a time)(smart phone tablets labtops etc)
3-i dont want to report the rule breakers i need to fix this trough system settings and policies
sorry for my bad english i realy tryed to be specific hope you did understand.
any suggestions or idea or fixes are most welcomed and appreciated.
and thx for your time.

TMG Firewall service terminates with service-specific error %%213001

November 26, 2013, 7:33 am
$
0
0

Following a recent reboot, the TMG Firewall service has started to crash shortly after startup, reporting Service Control Manager Event 7024 in the System event log, and at the same time, Microsoft Forefront TMG Firewall event 14001 in the Application event log.

The service crashes every time.

The Event log messages say

  • Log: System
  • Source: Service Control Manager
  • Event ID: 7204
  • Message: The Microsoft Forefront TMG Firewall service terminate with service-specific error %%213001

  • Log: Application
  • Source: Microsoft Forefront TMG Firewall
  • Event ID: 14001
  • Message: Firewall Service failed to initialize. Previous log entries might help determine the proper action

The only other event logged is a Service Control Manager 7036 (Service entered the stopped state) for the TMG Firewall service, logged at the same time as the 7024. There's nothing else being logged at all.

Anyone have any ideas as to why it's crashing? Or how I get some more detail about what it's up to during service initialisation? I can't find any reference to the %%213001 error code. is there a lookup for those, or do I need to open a case?


Configure Forefront

November 26, 2013, 3:00 am
$
0
0

hi all,

i tried to install and configure forefront TMG for our office but when i tried to access internet through the TMG it wont connect, from server there is a time out error comes, from client pc can't connect to Internet. need a help. i can give you a remote connection to the server to reconfigure it.

thanks

Supun

MCTS

How to remove Microsoft Forefront Threat Management Gateway from my browser?

November 25, 2013, 11:25 pm
$
0
0
Every time I want to download a file from my browser, it shows Microsoft Forefront Threat Management Gateway scanning the whole file first, then I am allowed to download it. I would like to disable this. I don't know how to remove this. There is no "Microsoft Forefront Threat Management Gateway" in Programs And Features and I have never installed this program. I don't know how it can appear in my browser. How to remove it?

TMG2010 - How to Route Outbound SMTP thru specific ISP route?

November 26, 2013, 11:40 am
$
0
0

I've got a working TMG2010 setup with a single ISP that hosts our SMTP and all of our Browsing. I've added a 2nd ISP using ISP Redundancy and browsing works just fine. My problem is that I must route my OUTBOUND SMTP traffic only through ISP1.  How can I successfully accomplish that?

1) No FPE (and my spam work is done on Exch Edge in DMZ) so I can't use e-mail policy.

2) Can I do it with a firewall rule? or a network route? Please explain how..

Thanks for any help.

Routing Chaning (Failure) Alert

November 12, 2013, 10:04 pm
$
0
0

Hi,

I getting continous the following alert in my TMG.

 Forefront TMG detected a proxy server loop. There may be a problem in the configuration of the Forefront TMG Web chaining policy. Alternatively, in Enterprise Edition, when CARP is enabled and there are intermittent interruptions of intra-array connectivity, array member A may forward a request to array member B according to the CARP algorithm, and array member B may forward the request to array member A in an endless loop.

Search

Publish Internal Website with embedded Flash object

November 21, 2013, 7:25 pm
$
0
0

Hi all,

I have searched around for this, but cannot find a solution. Apologies if this has been asked previously, my search terms did not return anything useful.

We have some third party monitoring software that runs on an internal server.
It uses its own web server to publish a web interface on localhost:80
The site does not use SSL (and is not designed to be able to, unfortunately)

I have created an internal DNS alias to allow users to enter a single hostname which redirects to that site.
This all works fine internally, and users can log on without issues.

What I am looking to do is publish that site externally so we can access the monitoring from home if something goes wrong.
The site uses an embedded Adobe Flash object on the site, and I think that is what is causing problems when publishing the site.

My ideal solution would be:
An external user loads site - https://monitoring.domain.com
The ISA Server then prompts the user to authenticate using our Active Directory login.
Once authenticated, the user is then forwarded to the internal site - http://monitoring
We would like https on the external site to secure the AD authentication.

The issue is that the site uses Adobe Flash to display the internal site's login prompt.

I have been able to publish the site (currently without SSL, just to prove to myself that it is publishing correctly)
The site loads, but I get a white box where the login box should be, and then a message appears saying cannot connect to server.

The manufacturers of the software claim that we need open port 'x' on the ISA Server to allow the Flash feed traffic through.

My experience with ISA is limited to publishing websites, and I don't know how to open specific ports for only a specific site.

Sorry for the long-winded question, I was just trying to provide all the info I could

So, could anyone explain to me the process for publishing an internal HTTP site to an external https site using AD authentication as well as opening a port for this site only?

We are using ISA Server 2006

Monthly reports TMG

March 23, 2012, 12:13 am
$
0
0

I'm having trouble with monthly report on my tmg array. Site and user activity reports show only one week information. I choose last 30 days in reports details but start date of this report is One week ago, End Date is now. 

the microsoft forefront TMG firewall service is not started

November 26, 2013, 11:26 pm
$
0
0
the microsoft forefront TMG firewall service terminated with service specific error the paging file is too small for this operation to complete.

Unable to access internet using IE 11 through ISA server 2006

November 27, 2013, 1:34 am
$
0
0

Hello,

All the users in our company using IE 10 and can access the internet without any problem and any user upgrade to IE 11 he can't access the internet and the ISA server will block him.

I have enabled ISA monitoring on the machine which use the IE11 and found the ISA blocked the IE 11 traffic because of this issue (Blocked by the HTTP Security filter: there are request headers which contain a disallowed sequence).

So, after that I disabled the HTTP security filter and after that every thing worked well, so I want to know if there are any work around to solve this issue unless disable the HTTP security filter or is there any bug fix for this.

Any idea....

how to dial ppoe before login in TMG2010

November 26, 2013, 2:55 pm
$
0
0
Hi there!
i've this scenario with TMG2010:
Single interface, with ISP connection via PPoE (i've setup a dial interface for that).
i want that TMG2010 to be connected automatically to PPoE ISP connection, before login and dial it manually.
Could these be done?
Regards!

Lasandro Lopez

TMG 2010 L2TP & Reverse DNS...

November 20, 2013, 2:38 pm
$
0
0

Hi folks!

I'm setting up a L2TP VPN on TMG 2010 for external clients. I'm having a problem connecting and I suspect it's due to reverse DNS entries for the WAN links on TMG not being correct (not the same as on the TMG certificate).

If my assumption is correct is it possible to work around this check when connecting?

ie. Two WAN links on TMG 2010;

with a machine certificate for edge.cocacola.com when the reverse DNS is actually edge.pepsicola.com

Q: Marking a question as answered when it's not - is this something new? A: Not at all, it's standard Nick Gu!

correct order to install updates in array configuration

November 27, 2013, 8:28 pm
$
0
0
I have two TMG 2010 servers configured in an array and being managed by another server which has had the TMG console installed.

So i have TMG1 and TMG2 with the full install and Server1 has the management console.

From what i can tell, no TMG updates or Service Packs have been applied.

What is the correct way to apply updates to this configuration?
Search

Network Error (gateway_error)

November 22, 2013, 11:56 am
$
0
0

Hi

I am trying to publish a website through TMG. I get the below error, does anyone know how to resolve this?

<big>Network Error (gateway_error)</big> 

An error occurred attempting to communicate with an HTTP or SOCKS gateway.
The gateway may be temporarily unavailable, or there could be a network problem.

For assistance, contact your network support team.

Thanks

Shane

i don't understand meaning of "Force full content requests (remove HTTP Range header)"

November 28, 2013, 1:54 am
$
0
0

hi friends

in TMG, in malware inspection tab of http access rule m there is a setting :

Force full content requests (remove HTTP Range header) 

i read some documents but i didn't understand what they say. here what is http range header ? do we have defined this range ?  where in console we can see this http range header ?

i am confused

thabks in advance

Still getting TMG logon page instead of OWA logon page

November 28, 2013, 3:04 am
$
0
0

Hi,

I have configured Exchange published on TMG with Form Based authentication enabled in Exchange 2010.

I still getting TMG logon page instead of OWA logon page.  What is the problem?

By the way, I am able to access email after the authentication via TMG logon page.

Please advise. Thanks.

Kelvin Teang

web publishing rule only redirect IE clients

November 28, 2013, 6:16 am
$
0
0

Hi

I have configured a web publishing rule, with no authentication and it does work only with IE7/8/9 browsers. 

However when I try to access the same website from ipad/chrome/firefox browsers I get 

Error Code: 403 Forbidden. The server denied the specified Uniform Resource Locator (URL). Contact the server administrator. (12202)

This has been initialized from users get document urls sent out to their email to access it, however if the user is not authorized it should redirect to the main page for authentication. 

like https://www.domain.com/dms/view_document.aspx?id=2872877 > https://www.domain.com

I have tried to do redirect with a deny-redirect access rule, however that way will go to a loop

When I have tried from the same client under chrome lying about the browser it works.

TMG 2010 SP2 RU 1, checked latest RU's but don't see anything related to this.

Any suggestion?

ISA config change for certain Websites.

November 30, 2013, 3:15 am
$
0
0

Dear All,<o:p></o:p>

We do have
ISA 2006 firewall and it is been configured correctly for all user levels.<o:p></o:p>

But now
there are some websites which does not work through this proxy.<o:p></o:p>

If I put my
ISP (proxy1.emirates.net.ae :8080) then it will work.

I am not
sure why is not working with our ISA proxy and works with ISP proxy.<o:p></o:p>

As a test I
created a firewall policy 1 for allowing all protocol for this group. added up
the site URL's but does not seems to be working.<o:p></o:p>

Can anyone
suggest if there is an option to configure using an external proxy (ISP Proxy
in my case ) if someone wants to access only this listed urls?<o:p></o:p>

<o:p> </o:p>

<o:p> </o:p>

<o:p> </o:p>

Thank You,<o:p></o:p>

Bibin.<o:p></o:p>




Viewing all 3822 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>