One the reasons to consider a TMG firewall is the ability to integrate the firewall with the rest of your management infrastructure. The concept of managing security under a “single pane of glass” has caught on, as the industry is recognizing that using multiple consoles from multiple vendors with different interface models introduces high overhead in terms of IT training and maintenance.
Think about it – why should your firewall, your SSL VPN gateway, your enterprise anti-malware, your email anti-malware, and your collaboration anti-malware all use different types of console and use different methods for displaying information and alerts? It never made sense to me, but then it was our only option.
System Center Operations Manager has the ability to provide you that single pane of glass that gives you insight into what’s happening throughout your physical, virtual, security, email, and collaboration infrastructure. In addition, if you have an Intel vPro enabled client deployment, you have advanced control over client power states and the ability to perform remote management using an out of band connection, so that even if client systems can’t boot into the operating system or have failed hard disks, you can still get to those machines. In addition, key auditing information is stored on a chip on the motherboard, so you don’t have to depend on the OS for critical accounting of your hardware.
If you’re not into System Center Operations Manager, it’s worth a look. The setup and configuration isn’t too complex, and the insight you’ll gain into your environment will amaze you. And now with the recent release of a SCOM pack for TMG, you’ll be able to tightly weave your edge security deployment into your well managed infrastructure.
For more information about the SCOM pack for TMG, check out a great article by Gabriel Koren over at the TMG firewall team blog at:
Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer