· A Client Access License (CAL) for each named or authenticated device or user that accesses a system running Unified Access Gateway.
 - to access FTP sites that require authentication, credentials should be specified in the address bar using the following format: ftp://username:[email protected]_Server_Name  - limited to clients which support FTP over HTTP, like IE; other popular FTP clients like File Zilla(as writing) will not work.
How FTP over HTTP works In a short explanation, the web proxy client(IE in this example) connects to the web proxy on port 8080, and issues a GET command for the desired ftp://neededlink URL.
Forefront Unified Access Gateway 2010 is licensed through Microsoft Volume Licensing (MVLS) and requires: · A server license, available either through an OEM appliance or as software.
It gives the license holder the right to install and use the server software.
Normally the malware inspection and the URL filtering apply just for HTTP and HTTPS traffic.
For example say a I create an access rule like: If we take a look on the Malware Inspection settings(right-click the rule and click Properties) of this rule, we can see the option Inspect content downloaded from Web servers to clients to enable malware inspection for it is grayed out: The logs on TMG tell us that malware inspection is disabled for this rule: If we add the HTTP protocol to the above rule(no need to apply the configuration on TMG yet): And then look again of the Malware Inspection settings(right-click the rule and click Properties) of this rule, now we will see the option Inspect content downloaded from Web servers to clients to enable malware inspection for this rule available: Check the Inspect content downloaded from Web servers to clients check box, click OK to close the rule’s Properties window, remove the HTTP protocol from the rule; then apply the configuration on TMG.If you use Group Policy for this configuration, your Forefront server won’t be able to register itself, because it has to disable the Windows Firewall to do this.Forefront TMG uses Malware Protection Engine and signature updates to scan all web pages, which your users are browsing, for viruses, malware, and worms.It is offered as a stand-alone product cor as part of the Enterprise CAL Suite or Forefront Protection Suite.TMG Web Protection Service is available in the same Microsoft licensing programs as Forefront TMG 2010, except for the following: · ISV Royalty · OEM · Open · FPP Pricing * All prices reflect pricing for purchases in the United States and Canada and appear in US dollars.Forefront TMG 2010 Enterprise Edition and Standard Edition are offered in the following Microsoft licensing programs: · Enterprise Agreement · Enterprise Agreement Subscription · Select · Academic and Government Select · ISV Royalty · OEM · Open · Open Value · Open Value Subscription · Service Provider License Agreement (SPLA) · Campus and School Agreement * Forefront TMG Standard Edition is also available in Full Packaged Product (FPP) for retail sale through distributors.