We’ve gotten many requests for this and today we’re announcing that ISA Server and Forefront Threat Management Gateway (TMG) will now be supported on hardware virtualization. This means that as long as a virtualization platform has been validated under the Microsoft’s Server Virtualization Validation Program (SVVP), then we will support that product within the limits of the Microsoft Product Support Lifecycle. That means when all heck break loose on your box at 3:00AM on a Saturday, you pick up the phone and you talk to a support professional who will be happy to assist you….and not handle the call like a cousin calling about her Mac not booting: “Sorry…unsupported config. Not much I can do for you.” (Trust me….I used to BE a support professional for Microsoft platforms and while we did try to assist, we were always left to “best effort”. No guarantee of success. Try passing that along to your boss!)
Also, there is a new MUST READ document called “Security Considerations with Forefront Edge Virtual Deployments”, by ISA Systems Engineer, Jim Harrison, and Forefront Edge PM, Gershon Levitz that explains the proper techniques for getting your security solution to run in a virtual environment. Some really good (and much needed) guidance and how to get it all working correctly. These guys are smart on the whole concept of these two products and we absolutely got the best guys to provide guidance for you. Worth a read!
Also, be on the lookout for a new Virtualization Security article coming from me in the Viewpoint column of the September issue of the Microsoft Security Newsletter, which if you haven’t subscribed, I highly recommend you do. It’s one stop shopping for all the security news at Microsoft. Also, be sure to check out my last article on Defense in Depth from June 2008. Trust me, it’s not like any other security article you’ve ever read!