Step 8: Configuring SSL Bridging

  • Article

Applies To: Windows Server 2008 R2

SSL bridging is the termination or initiation of an SSL connection by the Forefront TMG Server. The Forefront TMG Server processes the HTTPS request for the client and then forwards the request to a Web server by using HTTP or HTTPS.

When you select this mode, the Forefront TMG Server establishes a secure HTTPS connection with the client, and then forwards the request as secure HTTPS to the published RD Gateway server.

To configure SSL bridging on the Microsoft Forefront server

  1. On the Forefront TMG server, open Forefront TMG Management. To open Forefront TMG Management, click Start, point to All Programs, click Microsoft Forefront TMG, and then click Forefront TMG Management.

  2. On the Welcome to Forefront TMG Wizard page, click Close.

  3. In the Getting Started Wizard, click Yes.

  4. In the Forefront TMG console tree, expand Forefront TMG (TMG-Srv), and then click Firewall Policy.

  5. Double-click the Web publishing rule RDGatewayExchPubRule.

  6. On the Bridging tab, verify that Redirect requests to HTTP port is clear, that Redirect requests to SSL port is selected, and that 443 is the port, and then click OK.

Next, configure SSL bridging on the RD Gateway server (RDG-SRV).

To configure SSL bridging on the RD Gateway server

  1. Log on to RDG-SRV as CONTOSO\Administrator.

  2. On the RD Gateway server, open Remote Desktop Gateway Manager. To open Remote Desktop Gateway Manager, click Start, point to Administrative Tools, point to Remote Desktop Services, and then click Remote Desktop Gateway Manager.

  3. In the Remote Desktop Gateway Manager console tree, right-click RDG-SRV (Local), and then click Properties.

  4. On the SSL Bridging tab, select the Use SSL bridging check box, verify that HTTPS-HTTPS bridging (terminate SSL requests and initiate new HTTPS requests) is selected, and then click OK.

  5. In the RD Gateway window, click Yes.

Next, use the Installation Wizard for Forefront TMG Enterprise to install Forefront TMG on the Forefront TMG server (TMG-SRV).

You have configured SSL bridging on the RD Gateway server, RDG-SRV, and on the Forefront TMG server, TMG-SRV. Now you can proceed to Step 9: Verifying RD Gateway Functionality.