Installing Forefront Threat Management Gateway on SBS 2008 domain controller

Hi.
I am trying to install Forefront Threat Management Gateway on SBS 2008 domain controller. I have read that you cant install TMG on an domain controller but only on a domain member.

Obviously if i am installing it on SBS, the server will be my domain controller. I am installing it only on the one box and it is 64bit along with SBS 2008 64bit.

My question is, does anyone know if there is a way to install TMG (beta) on SBS 2008 running as a domain controller, or will there be a later version released that will be able to do this. I cant use hyper V as the bios do not support it.

thanks.
technolutionsAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Keith AlabasterEnterprise ArchitectCommented:
Sorry, don't believe you can do this.

Keith
0
technolutionsAuthor Commented:
ok thanks. any idea if there will be an version in the not so distant future that you can run on a DC?
or what i can do for an solution?
0
Keith AlabasterEnterprise ArchitectCommented:
I am not anticipating it, no. The only way i would do this would be on a seperate box for the tmg
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Webinar: Miercom Evaluates Wi-Fi Security

It's not just about Wi-Fi connectivity anymore. A wireless security breach can cost your business large amounts of time, trouble, and expense. Plus, hear first-hand from Miercom how WatchGuard's Wi-Fi security stacks up against the competition in our upcoming webinar!

technolutionsAuthor Commented:
wow that really sucks. I really cant believe they will do it like that. will wait for the final version.
thanks for the help anyway.
0
kurian2z5Commented:
Install TMG first and then promote it to a domain controller. Haven't encountered any problems yet.
0
Keith AlabasterEnterprise ArchitectCommented:
Please do not be ridiculous. Ftmg is not supported on a domain controller.
0
kurian2z5Commented:
Its not officially supported obviously. I'm only doing this on my home network and I don't expect anyone to do this in a production environment. If your company is too cheap to allot another server for TMG, its probably not the product for you anyway.

You can run dcpromo after installing TMG and it works.
0
Keith AlabasterEnterprise ArchitectCommented:
Nothing to do with my company, instead I am speaking as a Microsoft Certified Trainer for FTMG as well as being an MVP for both the ISA and FTMG products. Second, the question asker has SBS 2008 which is the only domain controller (at least to start with) - it can hardly be dcpromo'ed up at a later stage. if it was a supportable scenario, MS would have kept the option open. However, it is not supported in any situation therefore if you purchase FTMG you need to install on a separate server that is not a DC.

 
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SBS

From novice to tech pro — start learning today.