FIX: An expired user certificate can log on to OWA in ISA Server 2006 or in Forefront TMG 2010

Article translations Article translations
Article ID: 981189 - View products that this article applies to.
Expand all | Collapse all

On This Page

SYMPTOMS

Consider the following scenario:
  • You have Microsoft Internet Security and Acceleration (ISA) Server 2006 or Microsoft Forefront Threat Management Gateway (TMG) 2010 installed on a computer that is a member of a workgroup.
  • You configure ISA Server 2006 or Forefront TMG 2010 to publish a Microsoft Office Outlook Web Access (OWA).
  • You select the Require SSL secured connections with clients option for the client connection security in the New Web Listener Definition Wizard.
  • You select the HTML Form Authentication and LDAP (Active Directory) options for the authentication settings in the New Web Listener Definition Wizard.
  • You enable the Require SSL client certificate option for the Web listener.
In this scenario, you can log on to OWA by using an expired user certificate.

Note The supported fix for Forefront TMG 2010 is included in Forefront TMG 2010 Service Pack 1 (SP1).

RESOLUTION

Service pack information

This problem is fixed in Forefront TMG 2010 Service Pack 1.

For more information about how to obtain Forefront TMG 2010 Service Pack 1, click the following article number to view the article in the Microsoft Knowledge Base:
981324 List of problems that are fixed in Forefront Threat Management Gateway 2010 Service Pack 1

Hotfix rollup information


To resolve this problem, install the hotfix rollup package that is described in the following Microsoft Knowledge Base (KB) article:
982182 Description of the ISA Server 2006 hotfix package: April 13, 2010

STATUS

Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section. This problem was first corrected in Forefront TMG 2010 Service Pack 1.

REFERENCES

For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684 Description of the standard terminology that is used to describe Microsoft software updates

Properties

Article ID: 981189 - Last Review: October 6, 2011 - Revision: 4.0
APPLIES TO
  • Microsoft Internet Security and Acceleration Server 2006 Service Pack 1
  • Microsoft Internet Security and Acceleration Server 2006 Enterprise Edition
  • Microsoft Internet Security and Acceleration Server 2006 Standard Edition
  • Microsoft Forefront Threat Management Gateway 2010 Enterprise
  • Microsoft Forefront Threat Management Gateway 2010 Standard
Keywords: 
kbexpertiseinter kbfix kbsurveynew kbqfe KB981189

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com