Roger's Security Blog

As Chief Security Advisor of Microsoft EMEA - lets share interesting security information

Direct Access and Virtual Smartcard

Direct Access and Virtual Smartcard

  • Comments 1
  • Likes

I am a huge fan of DirectAccess – especially as a user. This means mainly, that I love it as a user as I do not have to care anymore about where I am connected – my notebook immediately connects to our Microsoft Corporation's network. Ages ago, when we ran the pilot I was already able to join and I am using it since then.

However, in the initial days of Windows 8, our internal pilot was limited to our domain at headquarters and I needed to use VPN again L

Since a few days we rolled out DirectAccess for Windows 8 – a really great experience as we now leverage a new functionality of Windows 8 as well: Virtual Smartcards. This means for me as a user, I had to VPN in, visit a website and request a certificate. This certificate request was signed by my "real" smartcard and then the private key is stores in my TPM in my slate.

Now, DA is seamless again and even with strong authentication.

Cool!!

Roger

Comments
  • Now a virtual TPM would be fine, so I could use DA inside a Hyper-V Client without my Smartcard.

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment