FIX: Logon to a Forefront Unified Access Gateway 2010 trunk may be unsuccessful when the Active Directory repository is set to "Use local active directory forest authentication"

Article translations Article translations
Article ID: 2748172
Expand all | Collapse all

Symptoms

Consider the following scenario:
  • A trunk uses an Active Directory authentication repository. 
  • You publish the trunk to a server that is running Microsoft Forefront Unified Access Gateway (UAG) 2010.
  • The Active Directory authentication repository is set to Use local active directory forest authentication.
  • You try to log on to the trunk.

In this scenario, your logon is unsuccessful.

Cause

This issue occurs because Forefront UAG 2010 issues an incorrect DNS query. The incorrect query results in a list of servers. Included in this list are domain controllers that are not global catalog servers. Forefront UAG assumes incorrectly that the list contains only global catalog servers. Because Forefront UAG tries to contact a domain controller that is assumed to be a global catalog server, Forefront UAG cannot complete the authentication process.

Resolution

To resolve this problem, install the service pack that is described in the following Microsoft Knowledge Base article:
2710791 Description of Service Pack 2 for Forefront Unified Access Gateway 2010

Status

Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.

References

For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684 Description of the standard terminology that is used to describe Microsoft software updates

Properties

Article ID: 2748172 - Last Review: December 7, 2012 - Revision: 2.1
Keywords: 
kbqfe kbfix kbexpertiseinter kbsurveynew kbbug KB2748172

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com