To configure secure logoff
In the Forefront TMG Management console, in the tree, click the Firewall Policy node.
In the details pane, click the applicable Web publishing rule that uses HTML forms-based authentication.
On the Tasks tab, click Edit Selected Rule.
On the Application Settings tab, in the Published server logoff URL field, type the string that is used in the logoff link on the published Web page to indicate a logoff request, for example, ?Cmd=logoff, or logoff=1.
On the Listener tab, click Properties.
On the Forms tab, click Advanced.
Under Cookie Settings, you can provide a name for the cookie that Forefront TMG provides to the client after forms-based authentication succeeds. From the drop-down list you can select whether the cookies are persistent (continue to exist on the client after the session ends) on all computers, only on private computers, or never.
For Ignore browser IP address for cookie validation, set whether you want to allow clients to use the same cookie from different IP addresses. For example, requests from a single client may appear to come from different IP addresses, such as when there is a load balancer between the client and Forefront TMG.
Under Client Security Settings, select:
- Treat as maximum idle time, to set a
time-out period based on the amount of time that the client is
- Treat as maximum session duration, to
set a time-out period based on the session length. Then provide
time-out periods for public and private computers, which will be
used to establish the maximum idle time or maximum session
- Apply session timeout to non-browser
clients, to apply the session time-out period to clients that
are not browser-based (such as Outlook RPC/HTTP and
- Treat as maximum idle time, to set a time-out period based on the amount of time that the client is idle.
Click OK, click OK again, and then click OK again.
In the details pane, click the Apply button to save and update the configuration, and then click OK.
ConceptsPublishing Web servers over HTTPS
Copyright © 2009 by Microsoft Corporation. All rights reserved.