Search This Blog
Showing posts with label TMG. Show all posts
Showing posts with label TMG. Show all posts

Monday, August 10, 2009

Part 3:- Integrate Forefront TMG into an array

In this article, i'm assume that you have perform Part 1 and Part 2 - Installing Microsoft Forefront TMG in another server.

By using a new installed stand alone TMG server, we are going to join to an array.

1. Using Forefront TMG Management console, click join Array on the Roles configuration.











2. Welcome screen to the Forefront TMG Join Array Wizard is open.
















3. On the Array Membership Type, select Join an array managed by an EMS server.















4. Enter the EMS FQDN as you've created in previous article and select connect using the credential of the logged user.
















5. The wizard will detect your EMS and show the Lab-Array which you've created in previous article. Select join an existing EMS managed array- Lab-Array.















6. Review the wizard and click Finish















7. It will join your existing stand alone server into EMS array






8. Just wait until you see this screen






9. On the Array, Click Dashboard. The Dashboard is the place whereby you can monitor TMG alert, session on each joined TMG in an array, Protection , Definition updates, Network Status and Services status of TMG.













That's concluded the lesson about integrating Forefront TMG into an array. Stay Tuned for overview features of TMG in the upcoming article
Posted by Lai Yoong Seng at 9:34 PM
Labels: ,

Friday, August 7, 2009

Part 2 - Integrate Forefront TMG into an array

We will continue from previous Part 1. Make sure you have read and follow Part 1- Integrate Forefront TMG into an array before continue this guide.

1. Start by open the Forefront TMG management from Start > Programs > Microsoft Forefront TMG > Forefront TMG Management













2. This is screen after installed EMS. Click on Array and Click Create New Array on the right pane.










3. New Array Wizard is open. Enter the array name before click Next. In my lab, i will called it "Lab-Array"











4. On the Array DNS name, enter a FQDN for your array.eg:Lab-Array.pcs.com.my










5.Then select Default Policy to assign Enterprise policy to your array. Default Policy contain "Deny All" rule.











6.Then you must specify array policy rule types which you can create in the array. By default: select all rules (Deny, Allow, Publishing)












7. Review first before click Finish to start create the array











8. After you click Finish, the wizard will start to create an array





9. This is screen layout after finish create an array

Posted by Lai Yoong Seng at 9:22 PM
Labels: ,

Part 1- Integrate Forefront TMG into an array

This guide is using Microsoft Forefront TMG Enterprise Edition Beta 3.

The Enterprise Management Server (EMS) is a server which is used to manage a TMG Enterprise Array or stand alone server. EMS must install on a separate machine and do not contain any TMG installation.

Before you start to install Enterprise Management Server, your server must join to domain. If not, you need to provide server certificate for workgroup environment during EMS installation. Let explore further..

1. Double click the installation file and select Install Forefront TMG.
It will start to check and install preparation tools as discussed in Installing Microsoft Forefront TMG - Part 1. Then when you reach to installation type page, you must select Install Enterprise Management Server.










2. The installation wizard screen is apprear.Click Next










3.Accept the license agreement










4.Enter customer information such as username, organization and product key










5.Specify the installation path










6.Select create a new enterprise configuration on this EMS










7. Review the new enterprise warning and Click Next.










8. On Create New Enterprise, specify the enterprise name










9. Then on Enterprise Deployment Environment, specify single domain deployment. All TMG server computer is located in the same domain










10.Click Next to start the installation










11.Click Finish to end the installation wizard











In the upcoming article, i will continue to discuss about create an array in the TMG.

Stay Tune...
Posted by Lai Yoong Seng at 8:34 PM
Labels: ,

Thursday, August 6, 2009

Part 103:- Installing Microsoft Forefront TMG - Step 3

Go to Start > Program > Microsoft Forefront TMG > Click Microsoft Forefront TMG Management to start the TMG console.

1. When you click TMG management snap-in for the first time after the installation, a Getting Started Wizard is open. Click Configure network setting to define network setting for Forefront TMG.












2. Network Setup wizard will appear. Click Next












3. On the Network Template selection, specify the network template that best fits in your topology. Since i only got 1 network adapter, i will specify Single Network adapter network template.












4.Verify the Local Area Connection TCP/IP setting











5. Click Finish to complete the Network Setup Wizard.












Next, select Configure system settings to define local system setting for TMG.












6. System Configuration welcome wizard is appear. Click Next












7. Enter host detail such as computer name, workgroup/domain and primary dns suffix.












8.Click Finish to complete the System Configuration Wizard.












Lastly, on the Getting started wizard click Define deployment options.












9. Deployment Wizard welcome page is open.












10. Specify use Microsoft Update to get the definition update












11. Select Activate and enable Network Inspection Service.
12. Selecy Activate and Enable Web Protection. You can evaluate for a year in Beta 3.
Tick Enable Malware protection
Tick Enable URL Protection












13. Leave the default setting for NIS Signature Update setting












14. On the Customer feedback, select No. I do not want to participate.











15. On Microsoft Telemetry service, select No











16. Click Finish to end the Deployment wizard.











You have completed the Getting Started Wizard configuration.











After you click Close, the system will run Web Access Policy Wizard.











17. Click Yes, create a ruke blocking the minimum recommended URL categories.











18. On the Web Blocked Destination, click Next











19. On the Malware Inspection Setting, select option Yes, inspect Web Content requested from the Internet and check the Block encryped archives.











20. On the HTTPS Inspection Settings, select Allow users to establish HTTPS connections to web sites and do not inspect HTTPS traffic but validate HTTPS site certificate.











21. Tick Enable Web caching and define cache drive











22.Click Finish to complete the Web Access Policy Wizard











Now you've finish the configuration for the basis setting in TMG.
Posted by Lai Yoong Seng at 3:25 PM
Labels: ,
Subscribe to: Posts (Atom)