I just noticed Forefront UAG 2010 SP2 has been released as of last week 06/08/2012.
Looks to contain lots of fixes as well as improved support for Apple IOS 5.x and Android 4.x devices.
Warning — This update requires all your clients to install a new version of the ActiveX endpoint component plugin. If you don’t want your clients updating the ActiveX components or you push out the UAG components via msi then do not deploy this update!
Updated 21st August 2012:
My experience with the upgrade was not completely painless.
I installed the patch on my secondary UAG server in about 3 minutes and rebooted. No worries there.
I then installed the patch on my primary UAG server – the patch took a good 20 minutes to install and after the reboot (which isn’t necessary but I don’t trust Windows), when logging into to test, my trunk web pages were not being displayed correctly. I was getting the usual ‘Server Error in SecureTrunk application’ message.
What else to do except stop the World Wide Web Publishing service, rename the \von\Conf\WebSites folder and reactivate my trunk confiugration from within UAG Management Console to recreate the trunk web site folders to try fix.
Still didn’t work.
I suspected my old friend – the group policy security settings forcing FIPS compliance: ‘System cryptography: Use FIPS compliant algorithms for encryption, hashing and signing.’ I disabled this via GPO and rebooted. This seemed to resolve the issue.
Why had this setting changed? Not sure – my web.config file looked unaltered – it was still set to use 3DES encryption which is FIPS compliant.
Not sure but I’m going to find out!