![forefront tmg 2010 cant edit default radius protocol forefront tmg 2010 cant edit default radius protocol](http://lh6.ggpht.com/_1Z-H-ni-Cj0/TF-faOfOUsI/AAAAAAAABOs/JOVt6uDMLZk/31056_thumb[2].jpg)
Remember that when you choose what type of authentication to use for external users, if TMG is set to delegate the user's credentials to the published SharePoint server, the authentication delegation method must be the same as the authentication type set on SharePoint. Once authenticated, TMG can provide the credentials to the SharePoint Server so that the user is not prompted again for a user name and password. When configured with FBA, TMG presents an HTML Form in which the user enters a user name and password, which TMG can then authenticate against Active Directory (in case TMG is a domain member) or Active Directory over LDAP protocol (in case TMG is a non-domain member).
![forefront tmg 2010 cant edit default radius protocol forefront tmg 2010 cant edit default radius protocol](https://cdn.techgenix.com/media/upls/image006_122.jpg)
The most commonly used authentication at TMG is Forms-Based Authentication (FBA). No Authentication (allows the internal published server to handle authentication).TMG can validate the client credentials passed on one of these formats using the following providers and protocols: HTTP Authentication (received in HTTP header).The different types of client authentication methods on TMG are: Then the client is either allowed to authenticate against the SharePoint server directly or use the credentials collected in the pre-authentication process and delegate them to the SharePoint server, providing a seamless, single sign-on experience to the client. TMG provides a variety of authentication mechanisms that can be used to pre-authenticate a request at TMG. The certificate should be trusted up to the Root Certification Authority. Remember that when you choose a certificate, that certificate needs to have a private key and its Common Name (CN) or one of its Subject Alternate Names (SANs) needs to be the same as the public URL. Because TMG is now an SSL client, it requires that the published Web server respond with a server-side certificate. If the secure Web publishing rule is configured to forward the request using SSL (HTTPS), TMG initiates a new SSL connection with the published server. The Web publishing rules determine how TMG communicates the request for the object to the published SharePoint server. For SSL-enabled Web applications such as SharePoint, after receiving the client's request, TMG decrypts the request, inspects it, and terminates the SSL connection with the client computer. SSL bridging protects against attacks that are hidden in SSL-encrypted connections. TMG can then forward the traffic using HTTP to the published SharePoint server or over HTTPS depending on how the SharePoint is configured locally. You can set up a listener with a certificate to restrict access to only HTTPS traffic. Most administrators encrypt all incoming traffic from the Internet using certificates.
![forefront tmg 2010 cant edit default radius protocol forefront tmg 2010 cant edit default radius protocol](https://richardhicks.files.wordpress.com/2010/05/image004.png)
One of the most important security considerations when publishing any Web service to the Internet or to a non-trusted network is the encryption of traffic.
#Forefront tmg 2010 cant edit default radius protocol how to
We'll conclude the chapter with a discussion of some common issues related to publishing SharePoint services and how to troubleshoot them.
![forefront tmg 2010 cant edit default radius protocol forefront tmg 2010 cant edit default radius protocol](https://www.vkernel.ro/blog/wp-content/uploads/2012/12/Publish-HTTP-Sites-with-TMG-2010-11.gif)
This chapter explains what you need to consider while planning SharePoint and how to configure a Web Publishing rule in TMG to publish SharePoint services to the Internet. When you publish Office SharePoint Services to the Internet, TMG can help make these sites available to external users without compromising the security of your organization's network. With Office SharePoint Services, organizations can take file sharing and collaboration to a new level by helping to improve process efficiency and information worker productivity, increase business agility, and reduce operating costs. This chapter discusses how to plan and configure a Microsoft Office SharePoint Services deployment. No part of these chapters may be reproduced, stored in a retrieval system, or transmitted in any form or by any means-electronic, electrostatic, mechanical, photocopying, recording, or otherwise- without the prior written permission of the publisher, except in the case of brief quotations embodied in critical articles or reviews. Tom Shinder, from (ISBN 0-7356-2638- 3, copyright Microsoft Press 2010, all rights reserved). Article This article was IS AN excerpt from the this Microsoft Forefront Threat Management Gateway (TMG) Administrator's Companion by Jim Harrison, Yuri Diogenes, Mohit Saxena and from at The Forefront TMG in the Microsoft Team with Dr.