Threat Management Gateway 2010 + RSA

I am running tests against our deployment of webmail (Exchange 2010) with RSA -- this worked before, but I had to build a new RSA appliance (8.1) with a new IP address.

I've used agent_nsload.exe, imported the node secret successfully, exported the sdconf.rec file to the TMG directory and System32, etc.

I must have missed a step, though, because when I try to authenticate to the webmail portal, and run the threat management gateway log query while I do it, it still sends the SecurID request to the old IP address of the RSA appliance, and not the new one.

Where is it getting this old IP and how can I tell it to go to the new one?
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Whatever TMG sends to internal servers is stored in a rule.
So check your rules and see, which rule forwards the request to your old appliance.
There is also a system rule for RSA SecureID (you have to make the visible or used the dialogs - edit system rules).
The default target is internal, but possibly it was changed to a dedicated target or a TMG object.
Then you have to correct the target or the object, which is used as target in the rule.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
NAMEWITHELD12Author Commented:
i will update this soon
NAMEWITHELD12Author Commented:
We weren't able to fix the problem, but you gave the most helpful advice.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.