No results found. You can ask us instead.
No results found. You can ask us instead.
Phone Lines icon GFI Support Home Sign in
No results found. You can ask us instead.
Start a conversation
  1. GFI Support
  2. GFI Support - WebMonitor Section
  3. Articles

TMG fails to load after enabling Kerberos authentication in HA scenario

Versions / Builds Affected

Any TMG version

Status

Resolved

Problem Summary

TMG fails to load after enabling Kerberos Authentication in HA scenario.

TT / JIRAID

990

How to Identify

Customer sets up a high availability (HA) TMG environment and enables Kerberos authentication as outlined here: http://blogs.technet.com/b/isablog/archive/2011/10/12/new-in-sp2-kerberos-authentication-in-load-balanced-scenarios.aspx In this setup it is suggested to run the TMG Firewall service under an domain user account which member only of a dummy group (and NOT a local nor domain admin). When configuring this the TMG Firewall service fails to load and the following event is logged: Event ID: 14146 Source: Microsoft Forefront TMG Web Proxy Forefront TMG failed to load Web Filter DLL D:\TMG2010\\WebMonPlg.dll

Workaround / Fix Details

Make the TMG Firewall service account a local admin (this might pose a security risk).

Required Actions

Explain the workaround. Explain that WebMonitor has not been designed with this scenario in mind.
Choose files or drag and drop files
Was this article helpful?
Yes
No

  1. Priyanka Bhotika

  2. Posted 6 days ago

Comments