I have TMG 2010 set up in a 3 Legged approach: External, Perimeter (DMZ) and Internal. I have a webserver in the DMZ which hosts multiple websites, one of which requires an SSL connection. I have set up an SSL listener and installed the certificate for the domain in the Personal storage on the Local Machine (the TMG) and published a website site rule which uses the SSL Listener.
However, when trying to access the site over HTTPS I get the error:
"Error Code: 500 Internal Server Error. The certificate chain was issued by an authority that is not trusted. (-2146893019)"
The certificate is from a valid certificate authority (Global Sign) and is confirmed in my Internet Browser.
When testing the rule from the TMG I get this error:
"Time reported by the Microsoft Forefront TMG Firewall Service: 0.010 seconds
Testing https://appstore.mydomain.com:443/
Category: Destination server certificate error
Error details: 0x80090325 - The certificate chain was issued by an authority that is not trusted."
I read that this is caused that when the certificate is not in the Trusted Root. I have copied the certificate from Personal into Trusted Root and the same problem persists.