Deploying TMG Array in DMZ ( Workgroup ) Part 2
now we have our TMG installed and our certificates ready in my previous post
next step is to install the certificate on the array manager
from the TMG console select system then select the array manager you will find install server certificate on the right
you will get the below box (don’t select Automatically create the root ….etc. ) most of the time it fails
now the TMG will become unresponsive for while that’s normal
now we need to make sure that the server has the Certificates installed correctly so we add the service Certificates MMC
if the install certificate was successfully installed you should see it if not manually import it
now wait a bit until the TMG server synchronize and all become green
next step to join the node to the array
before you joining please make sure that
- the ROOT CA installed on all nodes
- all nodes can resolve the FQDN of the other node (by using DNS or hosts file )
- don’t disable the IPv6
- the the user account you logged on with are the same on both nodes (same name and password )
now after you join the node please restart all server (array manager and the nodes )
after the systems back up set up the authentication account
Creating TMG NLB
go to networking and select enable NLB
Multicast or unicast is based on your network system . but most of the time multicast will do (I always recommend independent NIC for NLB but most of the times you don’t have this option
you can do both internal and external at the same time
ignore the scary massage
after 10 Minutes you will have a valid NLB
now we create a rule between both nodes in the array so the NLB console can detect the other node
that’s all now we have a functional TMG array
santhosh sivaraman
Nice one BOSS!!!!
This article was really useful for me.
Do post articles like this.
Many Thanks……….