Article ID: 2619991 - View products that this article applies to.
You run an application that uses port 443 to connect to a remote web server in a Microsoft Forefront Threat Management Gateway 2010 environment. After you enable HTTPS inspection (HTTPSi), the application no longer functions.
This problem occurs because HTTPSi always performs a secure socket layer (SSL) handshake to the destination web server even if the web server is not running SSL.
To resolve this problem, install the service pack that is described in the following Microsoft Knowledge Base article:
2555840Note After you install Service Pack 2, you can exclude the web servers from the inspection by adding them to the HTTPSi destination exclusion list.
(http://support.microsoft.com/kb/2555840/ )Microsoft Forefront Threat Management Gateway (TMG) 2010 Service Pack 2
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
For more information about HTTPS inspection, visit the following Microsoft TechNet website:
Configuring HTTPS inspectionFor more information about how to exclude the web servers, visit the following Microsoft TechNet website:
Excluding sources and destinations from HTTPS inspectionFor more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/824684/ )Description of the standard terminology that is used to describe Microsoft software updates
Article ID: 2619991 - Last Review: October 17, 2011 - Revision: 1.0