Microsoft DirectAccess Best Practices and Troubleshooting. (2013)
- Record Type:
- Book
- Title:
- Microsoft DirectAccess Best Practices and Troubleshooting. (2013)
- Main Title:
- Microsoft DirectAccess Best Practices and Troubleshooting.
- Other Names:
- Krause, Jordan
- Contents:
- Cover; Copyright; Credits; Foreword; About the Author; About the Reviewers; www.PacktPub.com; Table of Contents; Preface; Chapter 1: DirectAccess Server Best Practices; Preparing your Remote Access servers for DirectAccess; NIC configuration; Configuring internal NIC; Configuring external NIC; NIC binding; MAC address spoofing for virtual machines; Adding static routes; Hostname and domain membership; Prestage the computer account; Time for certificates; Installing the IP-HTTPS SSL certificate; Installing the IPsec machine certificate; Adding the roles; Don't use the Getting Started Wizard! Running the full Remote Access Setup WizardReasons not to use the Getting Started Wizard; Self-signed certificates; Self-hosted NLS; Disables Teredo; Applies client policy to the domain computers group; No advanced choices; Security hardening the server; Summary; Chapter 2: DirectAccess Environmental Best Practices; To NAT or not to NAT?; Three is better than one; Efficiency of Teredo over IP-HTTPS; 6to4; Teredo; IP-HTTPS; Planning for Certificates (PKI); SSL certificate for NLS; SSL certificate for IP-HTTPS; Machine certificates for IPsec; Requirements for the machine certificate. Choosing the CA in the wizardsMarking your calendars for certificate expirations!; Defining your GPOs and security groups; Let the wizards take care of it; Creating your own GPOs; Setting up the Network Location Server (NLS); Do I need IPv6 or ISATAP?; Teredo and 6to4 tips and tricks; Set Teredo toCover; Copyright; Credits; Foreword; About the Author; About the Reviewers; www.PacktPub.com; Table of Contents; Preface; Chapter 1: DirectAccess Server Best Practices; Preparing your Remote Access servers for DirectAccess; NIC configuration; Configuring internal NIC; Configuring external NIC; NIC binding; MAC address spoofing for virtual machines; Adding static routes; Hostname and domain membership; Prestage the computer account; Time for certificates; Installing the IP-HTTPS SSL certificate; Installing the IPsec machine certificate; Adding the roles; Don't use the Getting Started Wizard! Running the full Remote Access Setup WizardReasons not to use the Getting Started Wizard; Self-signed certificates; Self-hosted NLS; Disables Teredo; Applies client policy to the domain computers group; No advanced choices; Security hardening the server; Summary; Chapter 2: DirectAccess Environmental Best Practices; To NAT or not to NAT?; Three is better than one; Efficiency of Teredo over IP-HTTPS; 6to4; Teredo; IP-HTTPS; Planning for Certificates (PKI); SSL certificate for NLS; SSL certificate for IP-HTTPS; Machine certificates for IPsec; Requirements for the machine certificate. Choosing the CA in the wizardsMarking your calendars for certificate expirations!; Defining your GPOs and security groups; Let the wizards take care of it; Creating your own GPOs; Setting up the Network Location Server (NLS); Do I need IPv6 or ISATAP?; Teredo and 6to4 tips and tricks; Set Teredo to EnterpriseClient; Using Group Policy for this change; Disabling the 6to4 adapter on your clients; Using Group Policy for this change; Summary; Chapter 3: Configuring Manage Out to DirectAccess Clients; Pulls versus pushes; What does Manage Out have to do with IPv6? Creating a selective ISATAP environmentCreating a security group and DNS record; Creating the GPO; Configuring the GPO; Adding machines to the group; Setting up client-side firewall rules; RDP to a DirectAccess client; No ISATAP with multisite DirectAccess; Summary; Chapter 4: General DirectAccess Troubleshooting; Remote Access Management Console; Windows Firewall with Advanced Security; Reading the client logfiles; What happened to Teredo?; Clients with native IPv6; Summary; Chapter 5: Unique DirectAccess Troubleshooting Scenarios; What happens when NLS is offline?; The resolution. I enabled NLB and DA broke!The resolution; IPv4 applications don't connect over DA; App46 by IVO Networks; Cannot contact some servers; Routing; Name resolution; Checking DNS for ""strange"" AAAA records; Does it work over IP-HTTPS, but not Teredo?; Summary; Index. … (more)
- Publisher Details:
- Place of publication not identified : Packt Publishing
- Publication Date:
- 2013
- Extent:
- 1 online resource
- Subjects:
- 005.8
COMPUTERS -- Networking -- Intranets & Extranets
Computer network protocols
Computer networks -- Security measures
Computer network protocols
Computer networks -- Security measures
COMPUTERS -- Security -- Networking
Electronic books - Languages:
- English
- ISBNs:
- 1299990045
9781299990043
9781782171072
9781782171065
1782171061 - Related ISBNs:
- 178217107X
- Notes:
- Note: Print version record.
- Access Rights:
- Legal Deposit; Only available on premises controlled by the deposit library and to one user at any one time; The Legal Deposit Libraries (Non-Print Works) Regulations (UK).
- Access Usage:
- Restricted: Printing from this resource is governed by The Legal Deposit Libraries (Non-Print Works) Regulations (UK) and UK copyright law currently in force.
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library HMNTS - ELD.DS.86891
- Ingest File:
- 01_021.xml