I have setup a UAG portal url and am wanting to add owa and sharepoint to the portal as links but our owa and portal sites are already published on another tmg 2010 server in our organization.
Can i still add them to the uag portal site as links with SSO and if so how do i go about it.
Any help would be appreciated
Absolutely you can. You'd maybe do so using a different public DNS name. If you wanted to use the same public name, that is also fine but obviously the public DNS record can only point to UAG or existing TMG. What some companies do is use same, and then have UAG pilot users use a hosts file entry or entries (depending on number of public URL's). Once UAG is thoroughly tested and you want to cut all users over from TMG to UAG, simply change your public DNS records.
If you need help implementing UAG, consider MBR Security. I can help with design/planning or verify existing, setting up base UAG config, getting SSL certs, publishing apps including changes that may be need on app like AAM rules in Sharepoint, UAG look and feel customization, advanced UAG script level customizations to fit your needs, endpoint policies, explaining all relevant features and settings, knowledge transfer and limited training, and if desired documentation. Unless you have overly complex custom requirements or extensive documentation requirements, the typical UAG implementation can be completed by MBR Security in 2-4 days.. http://mbrsecurity.com
If you go at it on your own, here is some useful info to get you started on publishing SharePoint and Exchange:
If you run into a specific problem, use the forum as resource to help you past that specific item. Usually the forum not a good resource if you are looking for an end to end walkthrough of how to set up UAG or how to publish apps..
Thanks for your advice, its appreciated
I am having some trouble with my sharepoint site in uag, we use the same url for internal and external access.
I have published it and sso works internally but externally sso is not working. The sharepoint site is published on another TMG server and uses forms auth.I can launch the site externally but it comes up with the tmg forms authentication box and wants me to sign in.
I have been working on this for 2 days and and still no further forward
How can i get sso to work externally?
First of all when you say same URL for internal and external access I assume you mean fully the same. if between client/uag is https and between UAG/webserver is http then you'd still need special AAM rule in sharepoint if even the FQDN used is the same. But yes if it is https://something.company.com on both sides then nothing special in sharepoint AAM needed.
So I assume if it is already available externally via TMG, then the public dns record points at TMG. So for whatever UAG tests you are running, you have that name in your external clients hosts file so that traffic to that name goes from client to UAG trunk. if you are ever hitting tmg from external, sounds like you don't have the proper hosts entry to override the public dns and make sure you end up at UAG not TMG.
Assuming all the above the flow should be: client puts in external sharepoint URL. client goes thru UAG trunk endpoint client install/detect (if not disabled). client get UAG form login. client submits credentials. Uag validates credentials. since client asked specifically for shaepoint url, not uag portal url, client will not see uag portal and menu and load ahrepoint page. sharepoint will ask for authentication. (401 response) uag will reply with credentials on behalf of user. sharepoint page will load. (if you are using forms based auth on the sharepoint side, the UAG sso will be a uag formlogin which will briefly be appear and be autosubmitted on the client side. if there is not default formlogin for your version of sharepoint in formlogin.xml you'd need to create one in a customupdate)