Routing and Remote Access server is not registered in Active Directory
Updated: February 1, 2011
Applies To: Forefront Threat Management Gateway (TMG)
Before the server running Routing and Remote Access can authenticate domain accounts, it must be registered in Active Directory using an account with domain admin permissions.
Log on to the computer with an account that has domain admin permissions.
Launch the Active Directory Users and Computers MMC snap-in, and then double-click the domain name.
Double-click the Users folder, and then double-click the RAS and IAS Servers security group.
Select the Members tab, and add the server to this group. You will receive a message informing you whether registration is successful.