You install Microsoft Forefront Threat Management Gateway (TMG) 2010 in a domain.
A disjoint namespace exists in this domain.
You configure a report job that publishes to a directory.
In this scenario, Forefront TMG 2010 does not generate the report, and you receive an access denied error.
This issue occurs because Forefront TMG 2010 creates the wrong principal name when Forefront TMG 2010 queries Forefront TMG 2010 Enterprise Management Server for the password of the user account.
This issue is resolved in Forefront TMG 2010 Service Pack 1 (SP1).
For more information about how to obtain Forefront TMG 2010 Service Pack 1, click the following article number to view the article in the Microsoft Knowledge Base:
981324 List of problems that are fixed in Forefront Threat Management Gateway 2010 Service Pack 1
How to enable this fix after you install Forefront TMG 2010 SP1
Important This section, method, or task contains steps that tell you how to modify the registry. However, serious problems might occur if you modify the registry incorrectly. Therefore, make sure that you follow these steps carefully. For added protection, back up the registry before you modify it. Then, you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click the following article number to view the article in the Microsoft Knowledge Base:
322756 How to back up and restore the registry in Windows
In Registry Editor, locate the following registry subkey: