Prerequisites for TMG Firewall Email Protection

image During the beta process, the TMG firewall installer included all the components you needed to make the email protection feature works. It was a very elegant solution and I was greatly impressed! It was a complete solution and didn’t require any special knowledge about Exchange and Exchange Server roles – just what the doctor ordered! Not only that, but the Forefront Security for Exchange components were also installed. The installer redefined “easy” and would have made a Linux admin cry.

However, because of some licensing issues, the TMG firewall team had to rip out the Exchange Server and Forefront Protection for Exchange components. Very sad – but at least we knew that the TMG firewall team had their hearts in the right places 🙂

So, what do you need to do before you can get the email protection components to work with TMG?

  • Install AD Lightweight Directory Services (AD LDS)
  • Install the Exchange Edge server role
  • Install Forefront Protection 2010 for Exchange
  • Then, install Forefront TMG

You can use either Exchange SP2 or Exchange 2010.

Also, you can install TMG before the rest, but before you do that, you’ll need to remove PowerShell 1.0.

For a detailed how to on getting these things installed and configured, check out



Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer

Prowess Consulting

PROWESS CONSULTING | Microsoft Forefront Security Specialist
Email: [email protected]
MVP — Forefront Edge Security (ISA/TMG/IAG)

About The Author

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top