Michael Kleef ::: MSFT

http://twitter.com/mkleef

VPN Quarantine Blogcast

VPN Quarantine Blogcast

  • Comments 3
  • Likes

Ive had a few questions in my mind about VPN Quarantine and how the process works. Rather than spend stacks of time writing about it, I did my usual thing and blogcasted it!

But as a precursor:

Whats wrong with VPN today? It doesnt check the validity of the client to connect and that the client is conforming to network based policies such as firewalls being enabled and up to date with patches. We released the Remote Quarantine Service in the Windows Server 2003 Resource Kit but thats just the building blocks of creating a solution. So I wrote a couple of scripts (with some help from the Scripting Guys website) to perform client side checks for patches/firewalls up etc.

Anyhow, watch the blogcasts and tell me if theres anything still missing that I need to cover. Any scripts that Ive referenced or written are below...

Part 1: Shows the client interactions with the VPN Quarantine service on Windows Server 2003

Part 2: Shows how to configure the server side RADIUS provider to work with Quarantine

Part 3: Shows how to configure the VPN service and client component

Scripts

  • Code for the client side scan is here
  • Code for the Firewall Up script is here
  • Code for the Parsing script is here
  • Code for the certificate autoenrollment is here

With the code, remove the .txt appended at the end...obviously!

Comments
  • Michael Kleef posts a short series of how-to Blogcasts on Quarantine. And Tristan links to them. And some tools.

  • Pictures. Words. 1:1000.
    Check out Michael's blogcast on adding some scripts to the Windows Server Reskit...

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment