FIX: The Exchange Edge default Receive connector is disabled unexpectedly when the "Email policy integration" feature is not configured in Forefront Threat Management Gateway 2010
Consider the following scenario. You install the following on the same server:
- Microsoft Forefront Threat Management Gateway (TMG) 2010
- Microsoft Exchange Server 2010 Edge Transport Server role
- Microsoft Forefront Protection 2010 for Exchange Server (FPE).
You do not want to use the Email policy integration feature in TMG. When you do not use this feature, TMG does not manage the Exchange Edge and FPE settings. Therefore, you do not execute the Configure Email Policy Wizard in the TMG Management console.
In this scenario, you notice that the default Receive Connector for Exchange Edge is automatically disabled.
Even though you enable the connector again from the Exchange Management console or by using a Windows PowerShell cmdlet, you notice that the connector is automatically disabled again one minute later.
This problem occurs because the IntegrationEnabled property of the SmtpProtectionConfiguration COM object is set incorrectly to True during TMG setup. When the SMTP Protection feature is not configured, TMG tracks the Exchange configuration and disables all receive connectors.
To resolve this problem, install the service pack that is described in the following Microsoft Knowledge Base article:
2555840 Microsoft Forefront Threat Management Gateway 2010 Service Pack 2
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
To work around this problem if you do not want to use the Email policy integration mode, or you cannot install TMG Service Pack 2, set the Email Policy Integration mode to Disabled. To do this, follow these steps:
- Start the TMG Management console, and then click Troubleshooting.
- Set the Control Email Policy configuration integration task to Disabled, and then click Apply.
When Exchange Edge and FPE are running on the TMG server, we recommend that you enable the Email Policy integration mode so that TMG manages the Exchange Edge and FPE configuration. When TMG performs this management, Exchange and FPE settings are exposed in the TMG Management console. By default, when you use this integration feature, you do not experience this problem because TMG automatically manages the SMTP connectors that are defined in Exchange Edge.
For more information about the IntegrationEnabled property, visit the following Microsoft Developer Network (MSDN) website:
824684 Description of the standard terminology that is used to describe Microsoft software updates
Article ID: 2591729 - Last Review: 10/31/2011 03:20:00 - Revision: 3.0
Microsoft Forefront Threat Management Gateway 2010 Enterprise, Microsoft Forefront Threat Management Gateway 2010 Standard, Microsoft Forefront Threat Management Gateway 2010 Service Pack 1
- kbfix kbbug kbexpertiseinter kbsurveynew KB2591729