Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

Logging may fail when Forefront Threat Management Gateway 2010 runs on the English version of Windows Server 2008 or Windows Server 2008 R2, and the MUI Language Packs are installed


View products that this article applies to.

Symptoms

Consider the following scenario:
  • You run Microsoft Forefront Threat Management Gateway 2010 on a computer that is running the English version of Windows Server 2008 or of Windows Server 2008 R2.
  • You install the Multilingual User Interface (MUI) Language Packs to change the user interface to a non-English language.
  • Forefront Threat Management Gateway is configured to log on to the local Microsoft SQL Server Express database.
  • You install Service Pack 2 for Forefront Threat Management Gateway 2010.
In this scenario, many pending files for the Forefront Threat Management Gateway Large Logging Queue (LLQ) logging feature are created on the hard disk drive of the computer. Additionally, all the disk space on the hard disk drive may be exhausted when these files are created.

↑ Back to the top


Cause

This problem occurs because the localization of the "NT AUTHORITY\NETWORK SERVICE" user name is not recognized. For example, this problem occurs when the user name is localized to Spanish as "NT AUTHORITY\Servicio de Red." Therefore, logging to the local SQL Server Express database fails, and the LLQ files build up.

↑ Back to the top


Resolution

To resolve this problem, remove the original permission for "NT AUTHORITY\NETWORK SERVICE" from the localhost\MSFW database. Forefront Threat Management Gateway will automatically re-create the permission correctly. To do this, follow these steps:
  1. Run an administrative command prompt as a user member of the "Forefront TMG Array Administrator" group or the "Forefront TMG Enterprise Administrator" group. To do this, click Start, click All Programs, click Accessories, right-click Command Prompt, and then click Run as administrator.
  2. At the command prompt, type the following command, and then press Enter:
    sqlcmd –E –S localhost\MSFW
  3. Run the following SQL sentences:
    sp_revokelogin ‘NT AUTHORITY\NETWORK SERVICE’
    go
    exit
Note Threat Management Gateway will automatically re-create the SQL express security descriptor by using the correct "Network service" entry, depending on the computer's regional settings.

↑ Back to the top


Keywords: kbexpertiseinter, kbprb, kbsurveynew, kb

↑ Back to the top

Article Info
Article ID : 2662548
Revision : 1
Created on : 1/7/2017
Published on : 1/19/2012
Exists online : False
Views : 298