Hi,
I have implemented TMG 2010 Enterprise with SP2 and it is used as Reverse Proxy.
The scenario is as follows.
1 - The Main site is hosting the core services AD, Exchange, etc... and TMG is used as Reverse Proxy and the Exchange Services are published to Internet on FBA with AD.
2 - The bandwidth on the MPLS link from the site office to Datacenter is limited & costly.
3 - Each site office has two WAN connections one for connecting to Main Site and the other for Internet access and email access.
4 - Users on the site office access their emails through Internet and the Exchange is hosted in Main Site.
some of our users are experiencing account lockouts randomly and without trying bad passwords.
I am using an Account Lockout Examiner Tool from Netwrix but with this it shows the source for the account lockout as TMG Servers so i want to clarify following points.
1 - Is there any problem with this kind of setup first of all?
2 - Is the TMG trying to authenticate these users with the cached / old passwords?
3 - How to capture the failed logon attempts details on TMG?
Please suggest.
Regards,
Maqsood
Maqsood Mohammed Senior Systems Engineer MCITP-Enterprise Admin & ITILv3 Foundation Certified