Windows Server Direct Access

Sign in to queue

Description

Pre-Conference Seminars require an additional registration fee. If you have not pre-registered for a Pre-Con, please visit TechEd Europe Registration to add this to your registration record.

Any time a user connects to the Internet with DirectAccess they are seamlessly connected to the corporate intranet. There is no need for the user to initiate a VPN connection, the user experiences the same connectivity regardless of whether they are connected to the intranet or Internet. DirectAccess was first introduced in Windows Server 2008 R2; however its implementation presented a number of challenges for administrators and to provide an enterprise ready solution inevitably required the use of Forefront Unified Access Gateway (UAG). Windows Server 2012 now includes an enhanced full feature solution for DirectAccess including load balancing, multisite, multidomain and IPv4 support via the inclusion of DNS64 and NAT64. There is even a 3-click wizard to deploy a fully functioning DirectAccess solution for SMBs. This implementation removes the need for PKI and can be configured on a single network card behind NAT. While the Wizard masks the complexities of the technologies involved, a thorough understanding of DirectAccess is required to troubleshoot and build enterprise solutions. John Craddock has worked extensively in the challenging environment of DirectAccess with Windows Server 2008 R2 and UAG. Windows Server 2012 allows the implementation of quicker and more compelling solutions. Come to this pre-con and learn how to deploy and troubleshoot Windows Server 2012 DirectAccess, and realize all the benefits that the Windows Server 2012 implementation has to offer. An IPv6 primer is included to provide you with sufficient knowledge to fully support your DirectAccess implementation. Comprehensive demos accelerate your learning.

The Discussion

  • User profile image
    JohnCraddock

    I've just had a number of comments on the TechEd US website that I thought I would include here

  • User profile image
    JohnCraddock

    , Networking​Guy wrote

    I don't know much about IPv6 and I know this is a big part of Direct Access - will I be OK with the session

    My reply:

    The approach that I am taking with this precon is to discover the use of IPv6 as we go through Direct Access. For example I will start with a demo of using the 3-Click Wizard to get  DA up and running in it's simplest form. We'll then do a ping from the external client to one of the intranet servers and see the use of an IPv6 address. At this point you will learn about the IPv6 address format and types. We will then delve into the transition technologies, 6to4, IPHTTPS etc. By the time you leave the sessions you will have learned a lot about IPv6.

    I see this session as not only learning about deploying Direct Access but also learning the key elements of IPv6. And you'll also learn about certificates, NAP and a lot more...

    I hope that helps, If you want to know anything else just let me know.

     

  • User profile image
    JohnCraddock

     hours ago, Networking​Guy wrote

    Forgot to ask, will it cover NAP and Direct Access integration? 

    My reply:

    Yes NAP integration with Direct Access will be covered.

     

     

  • User profile image
    JohnCraddock

    , BradAgain wrote

    Will it cover 2FA

    My reply:

    Hi Brad, I will be covering 2FA directly and with NAP intergration

     

     

     

  • User profile image
    JohnCraddock

    If you have any questions about the precon - please ask away

    You can never ask a silly question, you can only get a silly reply! I'll try and give you a sensible reply Angel

  • User profile image
    Stuart

    Do you know what time your session will be on the Monday?

  • User profile image
    JohnCraddock

    @Stuart:The session runs from 9:00 - 17:00 - Hopefully you can make it

  • User profile image
    Bjarne​Rasmussen

    Looking forward to this session and believe it will be as good and precise as always when John presents

  • User profile image
    pjbryant

    John, to what extent will this be targetted just at Enterprise leve installations?  It'd be useful to have an element of the focussing on what modestly sized organisations who do not have 16 full 42U racks of servers (!) might be able to do to use DA effectively in their businesses (and by extension, how enterprises might implement on a more modest basis)

  • User profile image
    JohnCraddock

    @pjbryant:Hi PJ, The precon will show how DA works and how you configure it irrespective of organizational size. I am starting the day with using the 3-click wizard, from that we will go through and understand all of the technologies involved. We will then progress to the two tunnel mode necessary to support Windows 7 clients and other features. 

    The idea is that you will come away from the day with a good understanding of DA and with that knowledge be able to deploy an installation regardless of size. Towards the end of the day I will be covering the enterprise features of OTP, NAP and multisite deployments etc, but the main focus is to really understand how it all works.

    I hope that helps - please let me know if you need any more information.

    John

  • User profile image
    JohnCraddock

    @BjarneRasmussen:Thanks Bjarne - I'll do my best Smiley

  • User profile image
    TheStormXP

    @HForberg Booked, looking forward to attending!

  • User profile image
    starman

    The DA wizard is of course not perfect, for example if you just take the default settings then DA clients policy is applied to "Domain computers , and if your network location server is not accessible to those computers you have messed up all your computers in your company. So my question is will you cover some kind of troubleshooting and do's and don'ts for Direct Access ?

  • User profile image
    JohnCraddock

    @starman:Hi Starman, I will definitely cover the dos and don't and also how not to break your DA client's connectivity to the corporate network. Because we are going into the exact details of how it all works you will be in an excellent position to troubleshoot your environment.

  • User profile image
    JohnCraddock

    I thought you might be interested in some of the feedback on the session from TechED US:

    • One of the best classes of 2013
    • Excellent content from a speaker who obviously knows the subject inside and out. Highly useful for implementation decisions.
    • Very good class. Excellent presentations and demo. Instructors answered all of the questions. I will go to any classes John teaches in TechEd. I highly recommend his classes. Thanks again
    • Very detailed and in-depth dive into Direct Access on Windows Server 2012 and a good overview of IPv6. I enjoyed his presentation style
    • Excellent deep look at direct access and ipsec with real world implementation demos that helped solidify concepts being learned

     

  • User profile image
    nunoarias

    With Direct Access you are eveywhere in every place.

  • User profile image
    FirstNet

    Hi John,

    Still awaiting the upload of your slides..........

  • User profile image
    GeerLei

    Hi John. Same here as above. Great seminar - as usual Smiley , but no slide set received (also not via mail).

  • User profile image
    Anand Shah

    Do newer versions of Direct Access take iPads and other mobile devices as clients ?

    is there one in the works... ?

  • User profile image
    Richard Hicks

    For those interested, many of the questions on this thread can be answered by viewing my Windows Server 2012 DirectAccess breakout session here:

    http://channel9.msdn.com/Events/TechEd/Europe/2013/WCA-B339

    Thanks!

Add Your 2 Cents