Today, as a result of our effort to better align security and protection solutions with the workloads and applications they protect, Microsoft is announcing changes to the roadmaps of some of the security solutions made available under the Forefront brand.
For collaboration protection, SharePoint and Lync Servers will continue to offer the built-in security capabilities that many customers use to protect shared documents. For remote access, DirectAccess and Routing and Remote Access Server (RRAS) VPN in Windows Server 2012 provide secure remote access for Windows and cross-platform clients, as well as cross-premise access through site to site VPN. Forefront Unified Access Gateway (UAG) 2010 also continues to provide secure application publishing and cross-platform SSL VPN remote access for a range of mobile devices. We will continue to provide maintenance and support for the following Forefront solutions through the standard Microsoft support lifecycle (see chart below), but the discontinued Forefront offerings will no longer be available for purchase as of Dec. 1, 2012.
It is important to note that there are no significant changes to the Forefront Identity Manager or Forefront Unified Access Gateway roadmaps. These solutions continue to be actively developed. Forefront UAG 2010 SP2 was released in August 2012 and Forefront Identity Manager 2010 R2 was release in June 2012. If you have any questions about these changes, please contact your Microsoft or partner sales representative.
The Forefront Product Teams
Now we have lost the first customer. All of our customers don't want an UAG to Publish Exchange Services. UAG ist to expensive for midrange customers. Will Microsoft loose all midrange Customers? With TMG we have a good Solution for Publishing, Firewalling, Proxy with NIS functionality, Webprotection, VPN Solution.... I have search for other Firewalls that can filter rpc over https traffic. I Can't find any Solution.
We have deployd many Celestix MSA Appliances. Is the great Microsoft OEM Partner Celestix now dead?
Please think about your strategie again. I hope that Microsoft comes back on the right way.
UAG continued and killing TMG ?? ... Then UAG does have no future too i think. Bad Bad ... can't belive this ...
So.... what are we supposed to use now to front-end OWA?
Not sure what I will do without Forefront for Exchange, I've been an Antigen/Forefront implementer since 6.0, nothing has touched it in 8+ years, shocking.
TMG I could accept IF they were actually merging in back into UAG and return to the ISA days of merged code. Separating out the functions out was a huge mistake, not to mention all the EXTREAMLY confusing branding of all these products...
Juniper SSL VPNs can be used as a reverse proxy for smart card logon to web applications.
Microsoft has been trying to get out of the network edge business for a while, I actually thought that it was announced a year ago that TMG was not being further developed after this version. There are plenty of 3rd party vendors with products that fill this gap very well. I don't think IPv6 was considered when TMG was written, and it would be way too much work for Microsoft to recode it from scratch to support IPv6. There are many better products out there for Firewalls, Proxies, Reverse Proxies. It's good that Microsoft is focusing on servers like Exchange, and SharePoint, and letting network vendors handle the networks. Honestly, anyone really serious about network security would never let TMG on the network as a primary network security device anyway.
Too bad, So I guess we don't have a simple solution to offer to customers instead of using TMG. I would really love to hear what will be the alternative. I don't think this is a good move. If Microsoft does not believe in a product how can we offer it to customers :(
I think Microsoft has to hear us. Is not posible that Proxy Server 2.0, ISA 2000, ISA 2004, ISA 2006 and TMG, loose their horizon. Is the beginning of something... It sounds like some day we can hear that Windows ends his life, and our Jobs... In the era of cloud services, it is not important what is going on on premises. Buy suscriptions in the cloud, that was all. Bill come back!!!
We were planning on using Forefront TMG as a key component of an upcoming project, but now we just found out it's discontinued? Can anyone recommend a replacement product that can do web filtering (including HTTPS), RRAS and network-level antivirus?
In response to Rob:
Which products do you recommend to migrate to?
It seems so easy for you, but as some others said, TMG has unique features. Please elaborate on your answer and suggest Products with names!
Is this because of samba4?
OK, TMG is discontinued. But UAG is build on top of it......
I've the impression that some communication is donw, but another one has not be launched yet.....
Like to known the roadmap for UAG himself, before jumping to conclusions.
Just as I start thinking about Lync EDGE deployment there seems to be no reverse proxy more. Any other suggestions for a Server 2k12 based system? The original idea was to have TMG on 2k12 running and the EDGE server piggybacked via HyperV onto the same machine.
TMG did the job. Actually it did many jobs quite well. So why kill it ? And how can you kill TMG and keep developing UAG, unless of course UAG is to be discontinued next ...
MS guys, are you crazy? Do you really want to kill TMG 2010, one of the best proxy/firewall products on the market?
For many years I used MS products to build integrated infrastructure solutions. I have more MS certificates than an Xmas tree has decorations. Should I consider using Linux proxy servers in my projects? Should I consder using other alternatives to MS products as well?.. I wonder if your management staff begin to use bottom body parts for thinking.