Forefront TMG console on Windows 8 CP failed with error 0x80020003

As I’m testing Windows 8 CP in production environment for a week or two I had an “old” problem with Forefront TMG 2010 console

After installing Forefront TMG console I’m receiving error 0x80020003

This error occurs in past when you are upgrade IE or when you are install SP1 for TMG

Workaround for this error is:

1. Open TabsHandler.htc in C:\Program Files\Microsoft Forefront Threat Management Gateway\UI_HTMLs\Tabs Handler folder

2. Search for the 3 lines which contain “paddingTop“, and remark-out each of them by adding “//” in the beginning.

Example: Change the line: m_aPages [niPage].m_tdMain.style.paddingTop = ((m_nBoostUp < 0) ? -m_nBoostUp : 0) into: // m_aPages [niPage].m_tdMain.style.paddingTop = ((m_nBoostUp < 0) ? -m_nBoostUp : 0)

3. Save the file, and reopen Forefront TMG 2010 management console.

Your Forefront TMG management console working fine now.

Problem with intranet web and TMG 2010

I had very tight schedule last month, month and half

At first I had to prepare two presentations for two conferences. And second I had to configure my TMG that users have access to intranet web page.

From first it looks like simple configuration but later I couldn’t open intranet web page.

My configuration was simple. Intranet is on LAN not in DMZ, and TMG for some reason were blocked web access to every web page in LAN.

I tried to avoid configuring proxy settings using GPO. I want to use Firewall Client but firewall client deletes all exception distributed by GPO

Situation was pretty annoying.

Then I discovered WPAD (WebProxyAutomaticDetection).

I configured WPAD in next steps

1. In DHCP I was right clicked IPV4 then choose Set Predefined Options

2. Clicked Add

3. IN name box I typed WPAD

4. For Data Type choose String

5. In Code type 252

6. Then click OK

7. Right click again on IPV4 and choose again Set Predefined Option

8. Choose option 252 WPAD

9. In String put http://FQDNservername:8080/wpad.dat

10. Click OK

After this I just add option 252 to be distributed by DHCP and wait.

Second thing was few configurations on TMG 2010

My users now have access to intranet web page but this wasn’t desired configuration for me

My first idea was that only use firewall client but I had problems with intranet web access. Currently this automated solution works fine but I will see how to use only firewall client.