<div>
That is a very old hotfix which I used to use with ISA server, wasn't aware it also applied to TMG. The TMG is domain joined? Only the one TMG node?<br />
<br />
What traffic are you seeing in the TMG realtime viewer during the password challenge stage?<br />
Have you run a net monitor capture during the same stage to check the activity?<br />
<br />
Keith
</div>


That is a very old hotfix which I used to use with ISA server, wasn't aware it also applied to TMG. The TMG is domain joined? Only the one TMG node?

What traffic are you seeing in the TMG realtime viewer during the password challenge stage?
Have you run a net monitor capture during the same stage to check the activity?

Keith

<div>
Hi Keith, <br />
<br />
Do you have an idea what was the hotfix? No the TMG is not a member of the domain.
</div>


Hi Keith,

Do you have an idea what was the hotfix? No the TMG is not a member of the domain.

<div>
<div class="content wysiwyg-content">
Hi all, <br />
<br />
We have installed Forefront tmg 2010 sp2 rollup 3 and it is being used by Sharepoint and OWA. <br />
<br />
We applied this Cscript EnableHotfix957859.vbs /webListener:&lt;listener name&gt; /Value:true for the OWA and Sharepoint Listeners. <br />
<br />
Now we are enforcing a user to change the password from AD and if you enter correct username and any password a prompt will follow and ask you to change password. If we remove the enforce password from AD and test again with any password it says incorrect password. <br />
<br />
Can you please inform us what the problem might be?
</div>
</div>


Hi all, 

We have installed Forefront tmg 2010 sp2 rollup 3 and it is being used by Sharepoint and OWA. 

We applied this Cscript EnableHotfix957859.vbs /webListener:<listener name> /Value:true for the OWA and Sharepoint Listeners. 

Now we are enforcing a user to change the password from AD and if you enter correct username and any password a prompt will follow and ask you to change password. If we remove the enforce password from AD and test again with any password it says incorrect password. 

Can you please inform us what the problem might be?

forefront tmg 2010 sp2 rollup 3 enforce password change from AD not working

Microsoft Forefront, formerly known as Internet Security and Acceleration Server (ISA Server), is a network router, firewall, antivirus program, VPN server and web cache that runs on Windows servers. It includes identity management and protection systems, and discontinued systems for threat management and network protection, along with protection for Sharepoint and Exchange. The scope of discussions includes forward and reverse proxy, application and service publishing, virtual private networks (VPNs), outbound access rules, SSL certificates and network routing within either a single node or an highly-available array pairing.