Just some of the feedback for this session from TechEd North America:
John's session gave me exactly what I wanted. He gave me a good overview of new features in Windows 2012 AD and some technical information about practical limits that one has to know to avoid potential trouble
very clear and entertaining talk with lots of great demos
John did a great job of presenting the material, keeping the subject matter interesting and demonstrating and sharing his vast knowledge
If I could give the session 6-stars I would!!! The best session in two years!
The session went a lot deeper a much deeper into the backend technology than I was expecting
@starman:Hi Starman, I will definitely cover the dos and don't and also how not to break your DA client's connectivity to the corporate network. Because we are going into the exact details of how it all works you will be in an excellent position to troubleshoot your environment.
@Techiedude: W2K12, DC snapshot recover required the use of a Generation ID GUID exposed through the hyper-visor. Which is currently not supported on Windows Azure - I'll talk about backup and recovery options
Hi IPv6Girl, Great question! The quick answer is don't use it.
6to4, is an IPv6 transition mechanism that is used to transport IPv6 over the IPv4 Internet. When the client has a public IPv4 address, the 6to4 interface on the client is automatically assigned an IPv6 addressed based on the client's unique IPv4 address.
If the client receives a public IPv4 address when it is not actually directly connected to the Internet and the network doesn't allow IP protocol 41 to be routed to the destination, 6to4 will fail. Examples of where problems occur are mobile phone networks and locations that assign public IPs which route onto the Internet through NAT and firewalls.
Combine these problems with the fact that 6to4 cannot be used in multisite deployments because of asymmetrical routing issues and you will see why I said don't use it.
DirectAccess client connections should be supported by the transition mechanisms Teredo and IPHTTPS. The best thing to do is to sign up for the precon where I will go into all the details . We will need to understand 6to4 addressing as the DA server derives addresses and prefixes from the 6to4 address of the server's external interface.
I just receive a question on the TechEd Europe website and thought it might be useful to include it here:
"John, to what extent will this be targetted just at Enterprise leve installations? It'd be useful to have an element of the focussing on what modestly sized organisations who do not have 16 full 42U racks of servers (!) might be able to do to use DA effectively in their businesses (and by extension, how enterprises might implement on a more modest basis)"
@pjbryant:Hi PJ, The precon will show how DA works and how you configure it irrespective of organizational size. I am starting the day with using the 3-click wizard, from that we will go through and understand all of the technologies involved. We will then progress to the two tunnel mode necessary to support Windows 7 clients and other features.
The idea is that you will come away from the day with a good understanding of DA and with that knowledge be able to deploy an installation regardless of size. Towards the end of the day I will be covering the enterprise features of OTP, NAP and multisite deployments etc, but the main focus is to really understand how it all works.
I hope that helps - please let me know if you need any more information.