Symptoms
You enable and configure the Email Policy feature for Microsoft Forefront Threat Management Gateway (TMG) 2010. When the Forefront TMG Managed Control service tries to start, the service cannot start, and the following error is logged in the TMG log file:
Cause
This problem occurs when the Sender Reputation feature for Exchange Edge is enabled in the TMG Management console. To locate the Sender Reputation feature, click Email Policy, and then click the Spam filtering tab.The IP Block List option is populated with IP addresses by the Sender Reputation feature. However, TMG expects IP address ranges. When multiple IP addresses are added by using the same expiration time, the TMG Managed Control service cannot start.
Resolution
To resolve this problem, install the service pack that is described in the following Microsoft Knowledge Base article:
2555840 Description of Service Pack 2 for Microsoft Forefront Threat Management Gateway 2010
Status
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
References
For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684 Description of the standard terminology that is used to describe Microsoft software updates
