Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. "502 Proxy Error" error code when you try to access a website from a computer that has Forefront TMG 2010 SP1 installed

"502 Proxy Error" error code when you try to access a website from a computer that has Forefront TMG 2010 SP1 installed

Symptoms

Consider the following scenario:
  • You click to select Enable HTTPS inspection check box on the General tab of the HTTPS Outbound Inspection dialog box on a computer that has Microsoft Forefront Threat Management Gateway (TMG) 2010 Service Pack 1 (SP1) installed.
  • You add a domain name set, and then you add a Fully Qualified Domain Name (FQDN) of a website to the set. You set the Certificates field to No Validation in the Destination Exceptions tab.

    Note When the No Validation option is set, Forefront TMG 2010 SP1 cannot retrieve and validate the server certificate of Forefront TMG 2010 SP1.
In this scenario, you receive an error message that resembles the following when you try to access the website from the computer:
Error Code: 502 Proxy Error. The network logon failed. (1790)

↑ Back to the top

Cause

This issue occurs because Forefront TMG 2010 SP1 sends an empty client certificate to the web server during the initial Secure Sockets Layer (SSL) handshake.

When certain web servers receive an empty client certificate, these servers accept and renegotiate the client certificate. For example, IIS web servers accept and renegotiate the client certificate. However, other web servers may return an SSL error when these web servers receive an empty client certificate. Therefore, Forefront TMG displays the error message.

↑ Back to the top

Resolution

Update information

To resolve this issue, install the software update that is described in the following Microsoft Knowledge Base (KB) article:
2288910 Software Update 1 for Microsoft Forefront Threat Management Gateway (TMG) 2010 Service Pack 1

↑ Back to the top

Status

Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.

↑ Back to the top

More Information

For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:

824684 Description of the standard terminology that is used to describe Microsoft software updates

↑ Back to the top

Keywords: kbqfe, kbfix, kbsurveynew, kbexpertiseinter, kb

↑ Back to the top

Article Info
Article ID : 2423401
Revision : 1
Created on : 1/7/2017
Published on : 10/1/2010
Exists online : False
Views : 147