When you try to change your password in a Microsoft Forefront Unified Access Gateway (UAG) 2010 environment, the password is not changed. And, you receive the following error message:
You have attempted to access a restricted URL
The URL contains an invalid path
Additionally, in the Web Monitor, you receive the following error message:
A request from source IP address nnn.nnn.nnn.nnn, user on trunk portal; Secure=1 for application Portal of type Portal failed. The URL /SecurePortalPortalHomePage/ValidateChangePassword.asp contains an illegal path. The rule applied is Default rule. The method is POST.
This issue occurs because the path of the ValidateChangePassword.asp file in the LoginChangePassword.asp file was changed in Forefront Unified Access Gateway 2010 Service Pack 1 (SP1).
To resolve this issue, install the rollup package that is described in the following Microsoft Knowledge Base article:
2647899 Rollup 1 for Forefront Unified Access Gateway (UAG) 2010 Service Pack 1 Update 1
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684 Description of the standard terminology that is used to describe Microsoft software updates