Solved

Publish SharePoint 2010 with Forefront TMG 2010 (Externally)

Posted on 2010-11-22
11
4,988 Views
Last Modified: 2012-05-10
I am trying to publish Sharepoint 2010 Externally with Forefront TMG 2010 (Enterprise). [I have a MOSS 2007 site with ISA 2006 that is working already]

I am trying to publish SP using TMG HTML Forms authentication - I can get to the TMG forms page, but when I enter in my credentials it states "you do not have the permission required to access thie web site. Please contact the web site administrator.

I have SharePoint set up in IIS 7 for Windows Authentication, the SharePoint publishing rule for NTLM and the External Listener for HTML Form Authentication with Windows AD as the validation method.

I believe I have an authentication issue that I cant track down. If I change SP IIS to basic, publishing rule to basic and listner to HTTP Autheticaiton ->basic - everything works as expected.

I just cant seem to publish the site using Forms based authentication. Has anyone got this to work with FBA and what combination did you use?

Thanks
0
Comment
Question by:tmorrison3
  • 5
  • 5
11 Comments
 
LVL 10

Expert Comment

by:simonlimon
ID: 34192457
Try looking at this:

http://donalconlon.wordpress.com/2009/12/06/home-networking-configuring-forefront-tmg-for-web-and-sharepoint-publishing/

Also, have you created External access mapping on the sharepoint?

0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 34193577
You need to add NTLM as the authentication  provider  on IIS.

1.PNG
2.PNG
0
 
LVL 3

Author Comment

by:tmorrison3
ID: 34197114
@simonlimon - I ran across that link already and it didnt shed any new light....
@sulimanw - I do have NTLM in the providers in IIS

0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 34197187
add it from the available providers drop down list.
0
 
LVL 3

Author Comment

by:tmorrison3
ID: 34197732
Sulimanw - Yes, I have added it in from the available providers drop down list. providers
0
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 34197799
does not help ?
0
 
LVL 3

Author Comment

by:tmorrison3
ID: 34197856
notauth
Same results - and I already had NTLM in the providers. After I enter my credentials into the FBA, I get the above screenshot - however the TMG monitor shows that I have authenticated and it is not denying anything.
0
 
LVL 23

Accepted Solution

by:
Suliman Abu Kharroub earned 500 total points
ID: 34198517
it is an authorization (permission) problem not authentication
0
 
LVL 3

Author Comment

by:tmorrison3
ID: 34206513
I discovered that under System -> Web Filters -> Authentication Delegation Filter was disabled. Enabling this filter allowed the FBA to start working using NTLM.
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 34206595
Very useful.
Thank you for sharing and glad you issue is resolved.
0
 
LVL 3

Author Closing Comment

by:tmorrison3
ID: 34241775
You help lead me toward the correct spot...
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

For SharePoint sites, particularly public-facing ones, there are times when adding JavaScript, Meta Tags, CSS Styles or other content to the page <head> section is more practical than modifying master pages.  For instance, you could add the jQuery l…
Microsoft SharePoint Foundation 2010 and Microsoft SharePoint Server 2010 do not offer the option to configure the location of the SharePoint diagnostic trace log files during installation.  This can, however, be configured through Central Administr…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

930 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now