John Craddock

John Craddock JohnCraddock
MVP Logo

Niner since 2013



  • Running Your Active Directory in Windows Azure Virtual Machines

    Just some of the feedback on the session from TechEd North America:

    • this speaker is excellent.  the info covered not just cloud but adfs and ad.  extremely well done
    • Very good session, deep technically with good information
    • Extremely informative session. This was easily the best session i've attended so far. Very good speaker
    •  Good tips and things to avoid with AD on azure.
    • Good session.  Satisfied and got the info that I was looking for
  • What's New in Windows Server 2012 Active Directory

    Just some of the feedback for this session from TechEd North America:

    • John's session gave me exactly what I wanted.  He gave me a good overview of new features in Windows 2012 AD and some technical information about practical limits that one has to know to avoid potential trouble
    • very clear and entertaining talk with lots of great demos
    • John did a great job of presenting the material, keeping the subject matter interesting and demonstrating and sharing his vast knowledge
    •  If I could give the session 6-stars I would!!! The best session in two years!
    • The session went a lot deeper a much deeper into the backend technology than I was expecting
    • absolutely brilliant presentation.  nuff said
  • Windows Server Direct Access

    I thought you might be interested in some of the feedback on the session from TechED US:

    • One of the best classes of 2013
    • Excellent content from a speaker who obviously knows the subject inside and out. Highly useful for implementation decisions.
    • Very good class. Excellent presentations and demo. Instructors answered all of the questions. I will go to any classes John teaches in TechEd. I highly recommend his classes. Thanks again
    • Very detailed and in-depth dive into Direct Access on Windows Server 2012 and a good overview of IPv6. I enjoyed his presentation style
    • Excellent deep look at direct access and ipsec with real world implementation demos that helped solidify concepts being learned


  • Windows Server Direct Access

    @starman:Hi Starman, I will definitely cover the dos and don't and also how not to break your DA client's connectivity to the corporate network. Because we are going into the exact details of how it all works you will be in an excellent position to troubleshoot your environment.

  • Running your Active Directory in Windows Azure Virtual Machines

    @JohnCraddock:BTW The gene id is now supported.... .


  • Windows Server Direct Access

    Thank you all for coming and being such a great audience. Please don't forget to evaluate the session!


  • Windows Server Direct Access

    @Reinhartjason:Hi if you are still having problems let me know. Seems to be OK for me


  • Running your Active Directory in Windows Azure Virtual Machines

    @Techiedude: W2K12, DC snapshot recover required the use of a Generation ID GUID exposed through the hyper-visor. Which is currently not supported on Windows Azure - I'll talk about backup and recovery options

  • Running your Active Directory in Windows Azure Virtual Machines

    @mke077:Sorry I missed your question. I will certainly be discussing the security implications of running AD in Azure and also availability issues. But neither in great detail.

  • Windows Server Direct Access


    Hi IPv6Girl, Great question! The quick answer is don't use it.

    6to4, is an IPv6 transition mechanism that is used to transport IPv6 over the IPv4 Internet. When the client has a public IPv4 address, the 6to4 interface on the client is automatically assigned an IPv6 addressed based on the client's unique IPv4 address.

    If the client receives a public IPv4 address when it is not actually directly connected to the Internet and the network doesn't allow IP protocol 41 to be routed to the destination, 6to4 will fail. Examples of where problems occur are mobile phone networks and locations that assign public IPs which route onto the Internet through NAT and firewalls.

    Combine these problems with the fact that 6to4 cannot be used in multisite deployments because of asymmetrical routing issues and you will see why I said don't use it.

    DirectAccess client connections should be supported by the transition mechanisms Teredo and IPHTTPS. The best thing to do is to sign up for the precon where I will go into all the details Big Smile. We will need to understand 6to4 addressing as the DA server derives addresses and prefixes from the 6to4 address of the server's external interface.



  • Windows Server Direct Access

    I just receive a question on the TechEd Europe website and thought it might be useful to include it here:

    "John, to what extent will this be targetted just at Enterprise leve installations?  It'd be useful to have an element of the focussing on what modestly sized organisations who do not have 16 full 42U racks of servers (!) might be able to do to use DA effectively in their businesses (and by extension, how enterprises might implement on a more modest basis)"

    @pjbryant:Hi PJ, The precon will show how DA works and how you configure it irrespective of organizational size. I am starting the day with using the 3-click wizard, from that we will go through and understand all of the technologies involved. We will then progress to the two tunnel mode necessary to support Windows 7 clients and other features. 

    The idea is that you will come away from the day with a good understanding of DA and with that knowledge be able to deploy an installation regardless of size. Towards the end of the day I will be covering the enterprise features of OTP, NAP and multisite deployments etc, but the main focus is to really understand how it all works.

    I hope that helps - please let me know if you need any more information.


  • Windows Server Direct Access

    @BjarneRasmussen:Thanks Bjarne - I'll do my best Smiley

View All