When you try to install a replica of Microsoft Forefront Threat Management Gateway (TMG) 2010 Enterprise Management Server (EMS), the installation fails, and then you receive the following error messages:
ISA setup CA ERROR : ReplicateCssSecretsMasterKey_install: StgCssImportMasterKey failed, hr=0x80070002 Setup failed while copying the encryption key used for storing configuration secrets, to the replicated Configuration Storage server. As a result, storing and exporting secrets, such as user credentials, will not be available on this Configuration Storage server.
Additionally, these error messages are logged in the Forefront TMG 2010 installation log.
The installation log is located in the following folder:
The name of the log file is ISAFWSV_<ran_num>.LOG. <ran_num> is a placeholder for a random three-digit number.
This issue occurs because an error in the Forefront TMG 2010 installation code.
To resolve this issue, follow these steps:
Contact CSS to obtain the software update that is described in the following Microsoft Knowledge Base (KB) article:
2433623 Software Update 2 for Microsoft Forefront Threat Management Gateway (TMG) 2010 Service Pack 1
Create a slipstreamed installation that includes this software update. To do this, follow these steps:
Copy the whole Setup DVD for Forefront TMG 2010 RTM to c:\TMG on your local hard disk drive.
Download Forefront TMG 2010 Service Pack 1 (SP1) from the following Microsoft webpage.