FIX: The Exchange Edge default Receive connector is disabled unexpectedly when the "Email policy integration" feature is not configured in Forefront Threat Management Gateway 2010
Content provided by Microsoft
Applies to: Microsoft Forefront Threat Management Gateway 2010 Enterprise, Microsoft Forefront Threat Management Gateway 2010 Standard, Microsoft Forefront Threat Management Gateway 2010 Service Pack 1
Consider the following scenario. You install the following on the same server:
Microsoft Forefront Threat Management Gateway (TMG) 2010
Microsoft Exchange Server 2010 Edge Transport Server role
Microsoft Forefront Protection 2010 for Exchange Server (FPE).
You do not want to use the Email policy integration feature in TMG. When you do not use this feature, TMG does not manage the Exchange Edge and FPE settings. Therefore, you do not execute the Configure Email Policy Wizard in the TMG Management console.
In this scenario, you notice that the default Receive Connector for Exchange Edge is automatically disabled.
Even though you enable the connector again from the Exchange Management console or by using a Windows PowerShell cmdlet, you notice that the connector is automatically disabled again one minute later.
This problem occurs because the IntegrationEnabled property of the SmtpProtectionConfiguration COM object is set incorrectly to True during TMG setup. When the SMTP Protection feature is not configured, TMG tracks the Exchange configuration and disables all receive connectors.
To resolve this problem, install the service pack that is described in the following Microsoft Knowledge Base article:
2555840 Microsoft Forefront Threat Management Gateway 2010 Service Pack 2
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
To work around this problem if you do not want to use the Email policy integration mode, or you cannot install TMG Service Pack 2, set the Email Policy Integration mode to Disabled. To do this, follow these steps:
Start the TMG Management console, and then click Troubleshooting.
Set the Control Email Policy configuration integration task to Disabled, and then click Apply.
Note This procedure sets the IntegrationEnabled property for the COM object to False.
When Exchange Edge and FPE are running on the TMG server, we recommend that you enable the Email Policy integration mode so that TMG manages the Exchange Edge and FPE configuration. When TMG performs this management, Exchange and FPE settings are exposed in the TMG Management console. By default, when you use this integration feature, you do not experience this problem because TMG automatically manages the SMTP connectors that are defined in Exchange Edge.
For more information about the IntegrationEnabled property, visit the following Microsoft Developer Network (MSDN) website: