Direct-Access provides an advanced remote access option for Windows-based clients. Windows Server 2012 eases the deployment of DirectAccess and provides a Getting Started Wizard to help automate much of the deployment.
Direct-Access frequently works alongside traditional VPN technology such that Windows clients capable of using DirectAccess (Windows 7 and above) can do so while other clients can use the VPN to access corporate resources. Windows Server 2012 enables a unified remote access solution with both DirectAccess and Remote Access server and with VPN running through the same management console.
A key concept when deploying DirectAccess is the use of tunnels, specifically split or force tunnels. With a split tunnel, clients connect to corporate resources through the tunnel coupled to the corporate network, and connect to Internet resources through their normal network connection. With a force tunnel, clients use the corporate tunnel for all communication,both to the corporate network and to the Internet.
Before Windows Server 2012, you had to configure the force-tunnel scenario by using Group Policy. However, you can now configure force tunneling in the Remote Access Management Console. objectives are:
-Designing a DirectAccess topology
- Migrating from Forefront UAG
- Deploying DirectAccess
- Using enterprise certificates
Following are points which will discuss in next sections
[pt_view id="7fdc646a24"]
