Forefront UAG: best solution to publish SharePoint, Exchange Server, Dynamic CRM, Odoo ERP, Dynamics AX ...

What is Identity Enforcement Platform (IEP) with UAG 2010?

Logon page look like by Forefront UAG:

Take a look from https://my.csm.edu/

The location of Login.asp page be located by UAG look like

https://my.csm.edu/uniquesigcf3169faf7df28e99caa3a4ea8841d2b/uniquesig0/InternalSite/Login.asp?resource_id=530D2B579D654C4587E960CDB5F44126&login_type=2&site_name=portal&secure=1&URLHASH=35441336-fede-4dc9-94b1-e73f6e84696a&orig_url=https%3a%2f%2fmy.csm.edu%2f

 Colleage of Saint Mary Login Services - The logon process cannot be completed look like

Or can take a look from https://intra.joensuu.fi

https://atlasmobile.fresnounified.org

https://wfgen.kengen.co.ke

The Log On page with site is customized https://login.doe.k12.de.us/

Delaware - The logon process cannot be completed look like

Also do customize for site https://projects.fks.tuhh.de

TUHH - The logon process cannot be completed look like

https://access.browardemployee.org

https://iris.colum.edu

https://home.ness.com/

https://infobase.leeds.gov.uk/

https://bodandcommittees.unos.org

https://swa.wu.ac.at/

https://cirs.peacecorps.gov/

https://users.hlk.no/

https://mail.imperial.nhs.uk/

https://grammarnet.bggs.qld.edu.au

https://passwordreset.bggs.qld.edu.au/default.aspx

https://inside45old.sd45.bc.ca/

How to configure UAG: Configure a Trunk of UAG, some pages that often are customized of a Trunk for UAG is Logon.asp, LogOffMsg.asp and may be InternalError.asp. Here are some steps that we use to apply into a Trunk (configuration pannel) for change to custom Logon.asp, LogOffMsg.asp ...
1. Click on Configure... button from Forefron UAG Management

2. General information of a Trunk look like

3. Change location of Login.asp to CustomUpdate/LoginCanopy.asp and LogOffMsg.asp to CustomUpdate/LogOffMsgCanopy.aps at Logon Scheme and Logoff Scheme sessions

4.  InternalSite of a Trunk on IIS look like

5.InternalSite folders and files location of Forefront UAG look like

6. Location of custom page for a Trunk of Forefront UAG look like

7. Logo content inserted file of a Login page look like

8. Logo html code of a logo inc file use for custom login asp page look like

9. Add PNG extention photo file for a Trunk of Forefront UAG
The default image type (photo type) that ForeFront UAG 2010 support to display: gif and jpg (if put the photo type into /internalSite/Images/CustomUpdate/ folder)

If we want to display PNG photo file with Forefront UAG 2010, should be add more file extension at IntersiteSite_Rule24 look like below

10.  Can be use or remove BottomText from any inc or aps files

11. Replace inc/Install.inc inc by inc/CustomUpdate/InstallCanopy.inc file

How can we create a Trunk by Forefront UAG?

15.  Right click on "HTTP Connections" or "HTTPS Connections" then click on "New Trunk" to goto new Trunk pannel

16. Welcome to the Create Trunk Wizard

17. Select a Trunk Type

18. Choose TrunkName, Public Host Name, IP and Post for the new Trunk

19. Authentication information

20.  Select session access policies

21. Choose a session access policy for privileged and nonprivileged endpoints

22. Completing the Create Trunk Wizard look like

23. Must click on Save icon to save any change

24. Click on Activate icon to Active configuration

25.  Click Activate button to Activate Configuration

26. Activating the configuration

27. Activation completed successful

How to setup a Forefront UAG?

28. Download Forefront Unified Access Gateway (UAG) 2010 with Service Pack One (SP1) Evaluation Version
http://www.microsoft.com/en-us/download/details.aspx?id=16811

29. Welcome to the Forfront UAG 2010 with Service Packs Setup Wizard

30. License Agreement

31. Select setup location

32. Installing Roles and Features...

33. Installing Windows Identity Foundation

34. Installing Windows Identity Foundation

35. Need restart server then continue setup

36. Installing Forefront TMG SP1 Update

37. After restart again then will see "Installing Forefront UAG 2010 SP1"

38. Istalling Configuring Forefront TMG....

39. Setup Wizard Completed, The Forefront UAG Setup Wizard completed successfully

40. Forefront UAG Management from All Programs

41. Configure Network Setting

42. Welcome to the Network Configuration Wizard

43. Internal nextwork adapter look like

44. Enternal nextwork adapter look like

45. Not recommended to define a defualt gateway on the internal nextwork adapter

46. Define Internal Nextwork IP Address Range

47. Completing the Nextwork Configuration Wizard - Internal network

48. Completing the Nextwork Configuration Wizard - External network information

49. Configure Network Settings is well

50. Welcome to the Server Management Wizard

51. Single Forefront UAG server

52. Standalone Server mode of Forefornt UAG Server

53. Define Server Topology is well

54. Welcome to the Server Configuration Wizard

55. Use Microsoft Update for Forefront UAG

56. Customer Experience Improvement Program

57. Completing the Server Configuration Wizard

58.  Join Microsoft Update is well

59. Active Configuration with a password

60. Also choose back up configuration

61. Activation might take several minutes

62.  Activation completed successfully

63. The first time connect to external ip on Forefront UAG server

64. Default Log On page looklike of Forefront UAG

 

How to public an application by UAG? Ex. we public a SharePoint 2010 web application

65. Click on App... icon

66. Welcome to the Add Application Wizard

67. Choose Microsoft SharePoint Server 2010 web application template

68. Choose an application name

69. Endpoint Policies for a SharePoint web application

70. Deploying an Application (configure an application server)

71.  Location of an SharePoint 2010 inside internal UAG next work

72. Web Servers information look like

73.  Choose an Authentication server

74. Portal Link information

75.  Specify users and groups that can view and access the application via the portal

76.  Completing the Add Application Wizard

77. New application on list of applications

78. Must Save and Run Active configuration to apply any new change, include the new public application

God bless us!
Thomas Trung Vo


$10/h, I provide SharePoint/Office 365/UAG Solution and Development services by myself ($1760/month)
Social Media on Office 365 with Digimind: https://digimindo365-public.sharepoint.com/

Contact me by:
Linkedin: https://vn.linkedin.com/pub/thomas-trung-vo/39/991/b4
Emails: DigimindO365@ABC365.Mobi , SharePointTaskMaster@Gmail.com , ThomasTrungVo@Hotmail.com
Skype: TomaVoDuyTrung , ThomasTrungVo@Hotmail.com , DigimindO365@ABC365.Mobi
Phone: +84 947 529 003
Website: https://digimindo365-public.sharepoint.com/
Technical blog: http://sharepointtaskmaster.blogspot.com/