You use your web browser to go to a specific InternalSite URL in a Microsoft Forefront Unified Access Gateway (UAG) 2010 environment. If you go to the website from an external location, you receive a HTTP 403.14 error message that contains detailed information.
For example, you use your web browser to go to the following internal site that resembles the following:
Note Replace the trunk_IP_address placeholder by using the trunk IP address, and replace the uniquesig placeholder by using the appropriate values.
In this case, you receive a HTTP 403.14 error message that contains detailed information.
This problem occurs because Internet Information Services (IIS) on the Forefront UAG server is configured to return detailed error messages for requests that originate from LocalHost. When the Internet Server API (ISAPI) filter in Forefront UAG intercepts a client request that is destined for the InternalSite, the filter creates new HTTP requests originating from itself. Therefore, the InternalSite application sees that the request originates from LocalHost, and if an error condition occurs, a detailed error page is returned. The ISAPI filter in Forefront UAG then returns the detailed error page to the Internet client "as is."
To resolve this problem, install Service Pack 4 for Microsoft Forefront Unified Access Gateway 2010.
To work around this problem, follow these steps:
Open IIS Manager as an administrator.
Double-click Error Pages for Default Web Site.
Click Edit Feature Settings.
Change the Error Responses setting to Custom Error Pages from the default setting, Detailed errors for local requests and custom error pages for remote requests.
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
See the terminology Microsoft uses to describe software updates.