• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 4323
  • Last Modified:

FOREFRONT TMG 2010 with apple

Hello everybody,

I have installed a Windows server 2008 with FOREFRONT TMG 2010 and I have some problem with Itune and Iphone devices. I have configure my FOREFRONT with windows autentication (NTLM) all works very fine with microsoft clients, but when they want to get access on itunes an authentication pop-up with credential appear even they tip credential the pop-up appear again and again...
I have the same problems with iphones devices when they want to get internet with safari browser or mail on an exchange server.

Do you have any ideas to resolve that?

Thanks a lot
0
admininfo
Asked:
admininfo
  • 3
  • 3
1 Solution
 
strivoliCommented:
Some software (I had identical issue with iTunes) does not expose user identity to TMG. When User1 runs IE, IE "tells" TMG User1 is running IE and as a result TMG allows User1 to browse the Internet. When User1 runs iTunes, iTunes "does not tell" TMG who is using iTunes and as a result TMG asks for credentials.
The fastest solution is assigning a fix IP (with a reservation) to the client and allowing it anonymous browsing ("All Users" condition).
Let me know.
0
 
admininfoAuthor Commented:
It is ok for Itunes and Iphone but an other problem appear... I use the add-on Bandwidth Splitter and as you explain me I have mase an anoymous rules but in the monitoring of Bandwidth Splitter I want the Windows logins in the logs...  And with this rule I can't have nt account of all my users...

Thanks for your help.
0
 
strivoliCommented:
Glad to know you use Bandwidth Splitter (from now on BS). It is a nice product indeed.
Well, it depends which is the number of clients that use software that does not expose identity to TMG (such as iTunes).
For example: if you have 100 clients and 5 of these use iTunes, you'll get reports from BS about 95 users and 5 clients. You know that these 5 clients are used only by 5 users, don't you? You don't need to set TMG to allow anonymous traffic ("All Users") to all clients; just set it to the 5 affected clients.
On the contrary, if all clients use iTunes, BS reports will include only clients traffic.

I'm afraid there's no other solution. I've tried almost everything with iTunes/TMG and only anonymous traffic worked out.
0
Prep for the ITIL® Foundation Certification Exam

December’s Course of the Month is now available! Enroll to learn ITIL® Foundation best practices for delivering IT services effectively and efficiently.

 
admininfoAuthor Commented:
That is the problem all my client use Itunes :( maybe I will try surfcop
Thanks  lot
0
 
strivoliCommented:
You are welcome.
If I did help, kindly close the question.
If I did not help, kindly delete the question.
Thank you.
0
 
admininfoAuthor Commented:
ok
0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now