Microsoft Course 50402 - Implementing Forefront Unified Access Gateway 2010 — A 3 day course

contact usEnquire about this course


The Microsoft M50402 course prepares you to design and deploy remote access solutions using Microsoft Forefront Unified Access Gateway 2010 (UAG). Forefront UAG provides organizations with unparalleled flexibility in providing access to network resources (such as Web sites and internal applications) with granular access control, custom content protection, and endpoint validation.

Forefront UAG also integrates with DirectAccess, a new Windows 7 technology that provides seamless remote access to all corporate resources without connecting to a virtual private network.

This course is intended for architects, consultants, network administrators, and technical sales professionals who are responsible for selling, designing, and deploying edge access solutions for enterprises.


On completion of the Microsoft M50402 course, delegates should be able to:


Forefront UAG Overview

This module provides an overview of the features and capabilities of Forefront UAG, and the role it plays in enabling usage scenarios that are part of the Microsoft Business Ready Security strategy.

Forefront Unified Access Gateway Setup and Upgrade

This module covers the setup and configuration tasks for Forefront UAG, and describes how to migrate from Microsoft Intelligent Application Gateway 2007 (IAG) to Forefront UAG.

Lab : Install Forefront Unified Access Gateway 2010

Forefront UAG Portal

In this module, you'll understand the concept of a trunk in Forefront UAG, and how the product uses trunks to enable remote users to connect to internal applications. You'll see the role of the Forefront UAG portals as front end interfaces for these users, and how Forefront UAG can be customized during deployments.

Lab : Create and Configure a Portal Trunk

Publishing Web Applications

In this module, you will learn how to configure Forefront UAG to enable remote endpoints to have access to internal Web applications. You will see how to enable access to Microsoft Exchange and Microsoft SharePoint, and how to deploy federation using Active Directory Federation Services (AD FS).

Lab : Publishing Exchange Applications

Remote Desktop Gateway Publishing

In this module, you will see how Forefront Unified Access Gateway (UAG) allows you to provide access to published RemoteApps and Remote Desktops by integrating a Remote Desktop Gateway (RD Gateway) to provide an application-level gateway for Remote Desktop Services (RDS) and applications.

Lab : Publishing Remote Desktop Services

Remote Network Access

This module explains how you can configure remote access to the corporate network using the legacy Network Connector application or the Secure Sockets Tunneling Protocol (SSTP).

Lab : Remote Network Access using SSTP

IPv6 and IPv6 Transition Technologies

This module provides an overview of the IPv6 protocol used by Forefront UAG DirectAccess, and the technologies associated with transitioning from IPv4 to IPv6 networking.

Lab : IPv6 and ISATAP


This module gives an overview of DirectAccess, a technology enabled by Forefront UAG that provides seamless network access to Windows 7 clients.

Lab : Deploying DirectAccess

Endpoint Security Policies and NAP Integration

This module presents an overview of the policy evaluation and enforcement technologies for the Forefront UAG endpoints.

Lab : Endpoint Policies and Network Access Protection

Array Management

This module explores how Forefront UAG uses arrays to scale out to large deployments-improving the scalability and availability of the solution while reducing management overhead.

Lab : Configuring Forefront UAG Arrays

Enterprise Deployment and Troubleshooting

This module covers the considerations involved in designing, deploying, and troubleshooting an enterprise access solution based on Forefront UAG.

Publicly scheduled dates, locations, and prices

A schedule of dates for this subject is not currently available. Please call 0333 210 0140 or use our contact form to enquire about places and availability.

Suitable For

The Microsoft MS50402 course is intended for IT security and infrastructure specialists who have experience with Windows networking and authentication protocols. Experience with the IPv6 protocol is desirable but not required.


Before attending the Microsoft 50402 course, students should have:

Solid understanding of Windows networking. Experience with IPv6 is desirable but not required.

Working knowledge of Active Directory, LDAP, and RADIUS authentication.

Basic understanding of Microsoft Exchange Server 2007 and Microsoft Office SharePoint Server 2007.