Install and configure Forefront TMG 2010 Enterprise Management Server (EMS) for centralized Management (part II)—Step by Step


In part 1 Install and configure Forefront TMG 2010 Enterprise Management Server (EMS) for centralized Management—Step by Step, I illustrated how to configure Forefront EMS. In this second part, I will continue on additional configuration and verification required for a functional EMS.

Open Forefront TMG EMS Console, right click in the Forefront TMG Array, Click on Properties. Verify all the settings and Assigned Role. If you want you can add more members in administrator group.

1 2 3 4 5 6

Apply Changes, Click OK. Now create a Firewall Policy allowing HTTP and HTTPS traffic from internal to external network.

7

Create Connectivity verifiers for AD, DNS and Web as shown below.

 8

Log on to a computer as a domain member in the internal network. Setup proxy in IE and test network.

9 10

Installation of certificates in TMG Servers:

Log on to Certificate Authority. Open CA management console. Right Click on Certificate Template, Click on Manage. Select Computer, Right click and Click on Properties. Click on Security Tab, Check Enrol. Then Apply and Click OK. Repeat the process for Web Server.

11 12 13

In the TMG server, open MMC console. Follow these screen shots.

14 15 16 17 18 19 20 21 22

Click on More Information…… you will be resented Certificate Properties. In the Name drop down list, select Common Name and Type a Name, Click Add and Type drop down Select DNS and Type FQDN of TMG server. Click Add. Apply and OK.

 23 24 25 

Now Export these certificate with Private Key.

  28 29 30 31 32 33

26

34 35 36

Apply Changes. Click Ok.

Create Cache Drive preferably non systems partition. In this example, I am showing Cache drive in systems partition but in production environment you will have more then one partition in TMG server.

37 38

Further Study:

Install and configure Forefront TMG 2010 Enterprise Management Server (EMS) for centralized Management—Step by Step

Forefront TMG 2010: How to install and configure Forefront TMG 2010 —-Step by step

Forefront TMG 2010: how to install and configure Forefront TMG 2010—Step by step part II

Forefront TMG 2010 as an Anti-spam, an Antivirus and a Content Filter systems

Share thisAdd to FacebookAdd to DiggAdd to Del.icio.usAdd to StumbleuponAdd to RedditAdd to BlinklistAdd to TwitterAdd to TechnoratiAdd to Yahoo BuzzAdd to Newsvine

About these ads

About Raihan Al-Beruni

Raihan Al-Beruni has been working on Microsoft Technologies for more than 15 years. Microsoft Technologies are his passion and blogging on Microsoft product is his hobby. Raihan has published a book on Windows Server 2012 titled “Windows Server 2012 Step by Step” on December 2 2012. He has published hundreds of articles on wide variety of technology. Raihan Al-Beruni has a Master’s degree in Electronic Business from Edith Cowan University, Western Australia. He is Microsoft certified IT Professional in Lync Server 2010, Enterprise Messaging Administrator on Exchange Server 2010, Windows Server 2008. He is a Microsoft Certified Solutions Expert in Private Cloud and Server Infrastructure. He is a VMware Certified Professional on vSphere 5. He is ITILv3 Foundation certified. Other than working on various enterprise technologies and projects, he mostly spends times on playing with new technologies at home or spending time with family.
This entry was posted in Forefront Technologies and tagged . Bookmark the permalink.

One Response to Install and configure Forefront TMG 2010 Enterprise Management Server (EMS) for centralized Management (part II)—Step by Step

  1. Pingback: FF TMG 2010: Configure Network Load Balancing Across Enterprise Array Members | MicrosoftGURU

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s