UAG Recommendations?

Posted on 2011-04-20
Last Modified: 2012-05-11
We are looking at putting in a UAG and I am looking for recommendations on which company to go with, and also to get a physical device or go virtual? Right now the company we are with is pushing the Celestix appliance which is rather expensive. I am wondering if there is anything else that is more cost effective that still works well?
Question by:flugaurj
    LVL 51

    Assisted Solution

    by:Keith Alabaster
    It REALLY depends on what yoiu want to do. Celestix is a superb offering as either an FTMG or UAG appliance. Yes, it seems more costly up front but knowing the box is built and configured correctly is a fairly significant plus. I have no idea on your (or your conbsultant's) experience in this area but neither TMG or UAG are simple 'run the setup' applications. They are extremely complex and if not set up correctly will give you nothing but issues - a sorry return on what can be seen as a significant investment and has the potential to be an organisation-changing product.

    I am not aware of ANY equivalent product (UAG I mean) - whilst there are other application gateway and delivery processes from Citrix and Microsoft and couple those with VDI and terminal services and you have a good grounding.

    However UAG does so much more with DirectAccess as a full VPN solution (UAG allows the internal system to remain on IPv4 whereas the standard Microsoft DirectAccess (Non UAG) requires an internal IPv6 system throughout. It allows multiple directory services and credential lists to be used, allows multiple services to be 'fronted' via the same https or http portal, the list is endless.

    The biggest question normally asked is whether you actually need UAG or TMG. *A condensed version of TMG is supplied as part of UAG by the way. That said, I normally install these side by side in parallel- if funds allow it - so one acts as the outbound proxy and the UAG acts as the inboind remote access solution.

    LVL 7

    Accepted Solution

    Here you are some clarification regarding UAG vs TMG

    Author Closing Comment


    Featured Post

    Enabling OSINT in Activity Based Intelligence

    Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

    Join & Write a Comment

    I thought I'd write this up for anyone who has a request to create an anonymous whistle-blower-type submission form created using SharePoint 2010 (this would probably work the same for 2013). It's not 100% fool-proof but it's as close as you can get…
    Password hashing is better than message digests or encryption, and you should be using it instead of message digests or encryption.  Find out why and how in this article, which supplements the original article on PHP Client Registration, Login, Logo…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    732 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now