TechNet
Products
IT Resources
Downloads
Training
Support
Products
Windows
Windows Server
System Center
Internet Explorer
Office
Office 365
Exchange Server
SQL Server
SharePoint Products
Lync
See all products »
Resources
Curah! curation service
Evaluation Center
Learning Resources
Microsoft Tech Companion App
Microsoft Technical Communities
Microsoft Virtual Academy
Script Center
Server and Tools Blogs
TechNet Blogs
TechNet Flash Newsletter
TechNet Gallery
TechNet Library
TechNet Magazine
TechNet Subscriptions
TechNet Video
TechNet Wiki
Windows Sysinternals
Virtual Labs
Solutions
Networking
Cloud and Datacenter
Security
Virtualization
Updates
Service Packs
Security Bulletins
Microsoft Update
Trials
Windows Server 2012 R2
System Center 2012 R2
Microsoft SQL Server 2012 SP1
Windows 8.1 Enterprise
See all trials »
Related Sites
Microsoft Download Center
TechNet Evaluation Center
Drivers
Windows Sysinternals
TechNet Gallery
Training
Training Catalog
Class Locator
Microsoft Virtual Academy
Free Windows Server 2012 courses
Free Windows 8 courses
SQL Server training
e-Learning overview
Certifications
Certification overview
MCSA: Windows 8
Windows Server Certification (MCSE)
Private Cloud Certification (MCSE)
SQL Server Certification (MCSE)
Other resources
TechNet Events
Second shot for certification
Born To Learn blog
Find technical communities in your area
Support options
For small and midsize businesses
For enterprises
For developers
For IT professionals
From partners
For technical support
Support offerings
For home users
More support
Microsoft Premier Online
Microsoft Fix It Center
TechNet Forums
MSDN Forums
Security Bulletins & Advisories
International support solutions
Log a support ticket
Not an IT pro?
Microsoft Customer Support
Microsoft Community Forums
Sign in
The Cloud Security Man
Cloud Security is Job One for the Cloud Security Man
Tags
6to4
6to4 Interface
Active Directory
Array
Ben Ari
Carsten Kinder
certificate revocation list
Certificates
certification authority
Cloud
Commercial Certificate
configuration
Contest
CRL
DA
DCA
Deployment
Diogenes
DirectAccess
DirectAccess Monitor
DNS
DNS64
domain detection
edge man
end-to-end security
error
Extension
firewall
Force Tunneling
Fun
Good Press
Group Policy
Group Policy Objects
Identity
Identity Management
Infrastructure
IP Protocol 41
IP-HTTPS
IPsec
IPv6
IPv6 transition technologies
IPv6 Transition Technology
ISATAP
ISATAP router
Jason Jones
Manage Out
mobile broadband
Multi-Geo
Multi-site
Name Resolution Policy Table
NAP
NAT
NAT64
NetBIOS name
Network Access Protection
Network Location Server
NLA
NLB
NRPT
Private Cloud
Proof of Concept
Remote Desktop Gateway
remote management
SAP GUI
Secure Socket Tunneling Protocol
Security
service pack 1
Shannon Fritz. Tom Shinder
Small Business
SMB
Split Tunneling
SSTP
Talk TechNet
Tarun Sachdeva
Technet
TechNet Talk Radio
Teredo
Test Lab
test lab guides
The Edge Man
TLG
TLGs
TMG
Tom Shinder
tomsh
topology
Troubleshooting
UAG
UAG Management Console
UAG Service Pack 1
UAG SP1 RC
Unfied Access Gateway
Unified Access Gateway
Virtualization
Wiki stuff
WiMax
Windows Direct Access
Windows Firewall Profile
Windows Update
Yuri Diogenes
Browse by Tags
TechNet Blogs
»
The Cloud Security Man
»
All Tags
»
directaccess
Related Posts
Blog Post:
What Defines a Functional Connection to a Network Location Server?
Thomas W Shinder - MSFT
One of the key pieces of a working DirectAccess solution is the Network Location Server or NLS. The purpose of the Network Location Server is to help the computer configured as a DirectAccess client to know that it’s inside the corporate network. When the DirectAccess client is inside the corporate network...
on
19 Jul 2010
Blog Post:
UAG SP1 RC DirectAccess with SSTP Test Lab Guide Released
Thomas W Shinder - MSFT
I am happy to tell you that today I’ve released the Test Lab Guide: Demonstrate UAG SP1 RC DirectAccess with Secure Socket Tunneling (SSTP) Test Lab Guide. This is one that I was looking forward to doing because this is such an important deployment model. As you might know, a single UAG server or UAG...
on
16 Nov 2010
Blog Post:
Configuring DirectAccess to Support Citrix Connections
Thomas W Shinder - MSFT
We’ve seen a lot of questions on how to get the Citrix client to work with DirectAccess. The following provide some information and procedures that may work to get the Citrix client to work over DirectAccess. The Citrix client can use IPv6 to connect to one type of server only: the Citrix Secure Gateway...
on
24 Aug 2010
Blog Post:
Answers UAG DirectAccess Contest Quiz 2 Round 1
Thomas W Shinder - MSFT
Here are the answers to Quiz 2, Round 1: ==================================================== Question 1: You have installed UAG Service Pack 1 and find that you are unable to connect to resources on the intranet using fully qualified domain names. What is the most likely reason for this failure? A. ...
on
14 Dec 2010
Blog Post:
Fix for DirectAccess with SharePoint Authentication Issue
Thomas W Shinder - MSFT
“Why does SharePoint ask for credentials when I connect over DirectAccess?” There is a very long thread on the TechNet forums regarding an unusual authentication issue when DirectAccess clients try to connect to SharePoint sites. There were a lot of posts and a lot of effort was made to determine the...
on
21 Oct 2010
Blog Post:
Test Lab Guide: Demonstrate Forefront UAG SP1 RC DirectAccess with Secure Socket Tunneling Protocol (SSTP) and Remote Desktop Gateway (RDG)–Blog Version
Thomas W Shinder - MSFT
Hey folks – since the TLGs are typically put up only in the download center, it makes discoverability of some of the cool content inside of them hard when it comes to search engines. Therefore, I’m going to post the full text of the TLGs on the Edge Man blog. However, I recommend that you download the...
on
17 Nov 2010
Blog Post:
Test Lab Guide – Demonstrate UAG SP1 RC DirectAccess Connectivity Assistant - Blog Version
Thomas W Shinder - MSFT
Hey folks – since the TLGs are typically put up only in the download center, it makes discoverability of some of the cool content inside of them hard when it comes to search engines. Therefore, I’m going to post the full text of the TLGs on the Edge Man blog. However, I recommend that you download the...
on
5 Nov 2010
Blog Post:
UAG DirectAccess in 8 to 10 Easy Steps
Thomas W Shinder - MSFT
So you’ve gone through our excellent Test Lab Guides (which you can find at http://social.technet.microsoft.com/wiki/contents/articles/test-lab-guides.aspx ) and you’ve read the UAG DirectAccess design guide ( http://technet.microsoft.com/en-us/library/ee406191.aspx ) and the UAG DirectAccess deployment...
on
21 Oct 2010
Blog Post:
Why Do I Need Two IP Addresses on the External Interface of the UAG DirectAccess Server?
Thomas W Shinder - MSFT
This question comes up frequently when introducing admins to UAG DirectAccess. It makes sense, since public IPv4 addresses are getting more difficult to come by and in fact it’s predicted that there will be an exhaustion of the entire IPv4 address space by next month. So, why do you need two public IP...
on
19 Jan 2011
Blog Post:
DirectAccess - More Information on the “No Usable Certificate(s)” 0x103 Error
Thomas W Shinder - MSFT
In the continuing saga of the “No Usable Certificate(s) 0x103” error, which has been discussed in two previous blog posts: http://blogs.technet.com/b/tomshinder/archive/2010/03/30/troubleshooting-the-no-usable-certificate-s-ip-https-client-error.aspx and http://blogs.technet.com/b/tomshinder/archive...
on
24 Mar 2011
Blog Post:
Test Lab Guide – Demonstrate UAG SP1 RC DirectAccess Force Tunneling - Blog Version
Thomas W Shinder - MSFT
Hey folks – since the TLGs are typically put up only in the download center, it makes discoverability of some of the cool content inside of them hard when it comes to search engines. Therefore, I’m going to post the full text of the TLGs on the Edge Man blog. However, I recommend that you download the...
on
2 Nov 2010
Blog Post:
Test Lab Guide - Demonstrate Forefront UAG SP1 RC DirectAccess Force Tunneling Now Available
Thomas W Shinder - MSFT
I’m happy to announce the release of the latest UAG DirectAccess Test Lab Guide – Test Lab Guide: Demonstrate Forefront UAG SP1 RC DirectAccess Force Tunneling , which you can download now at http://go.microsoft.com/fwlink/?LinkId=205454 I found this Test Guide to be especially interesting to put together...
on
2 Nov 2010
Blog Post:
Microsoft UAG DirectAccess: The Beautiful Truth
Thomas W Shinder - MSFT
When I’m between doing things that I sort of want to do, but not enough where I want to start on them right away, I’ll do a little ego surfing. If you haven’t heard the term “ego surfing”, it’s the act of going to your favorite search engine (or multiple search engines) and searching for the results...
on
9 Dec 2010
Blog Post:
The Edge Man is Back!
Thomas W Shinder - MSFT
You might have noticed that the Edge Man has been absent for a while (at least I hope you’ve noticed). The reason for my absence is that I was doing some interesting work on the upcoming UAG Service Pack 1 over in the Israel Development Center (ILDC). And I have some great news for you! UAG Service Pack...
on
23 Sep 2010
Blog Post:
How to Configure UAG to Publish Your Private Certificate Revocation List
Thomas W Shinder - MSFT
In order for SSTP (Secure Socket Tunneling Protocol) and DirectAccess to work properly the SSTP and DirectAccess client must have access to the CRL (Certificate Revocation List) of the server certificate (if you are using Client Certificate or Smart Card authentication you will also need access from...
on
3 Aug 2010
Blog Post:
A Solution to the “Forwarding on the 6to4 Interfaces Cannot be Enabled” Error
Thomas W Shinder - MSFT
Ben Ari posted an answer to the Forwarding on the 6to4 Interface cannot be enabled error that you might see when you try to activate the DirectAccess configuration on the UAG DirectAccess server. When you activate the configuration, it will look something like this: Check Ben’s blog post at http...
on
20 Apr 2011
Blog Post:
What About IPv4 Only Deployments
Thomas W Shinder - MSFT
While DirectAccess seems like an attractive proposition to most network admins, there is often a concern about IPv6. These admins have read about the Windows Server version of DirectAccess (DA) and they’re concerned that they’ll need to upgrade their servers and configure their routers and other network...
on
16 Apr 2010
Blog Post:
Troubleshooting the “No Usable Certificate(s)” IP-HTTPS Client Error
Thomas W Shinder - MSFT
(Discuss UAG DirectAccess issues on the TechNet Forums over at http://social.technet.microsoft.com/Forums/en-US/forefrontedgeiag ) An interesting case came in last week and I thought it would be useful to share it with you all. It’s especially interesting because it covers some not so well documented...
on
30 Mar 2010
Blog Post:
Be Careful of DNS Issues When Testing UAG DirectAccess
Thomas W Shinder - MSFT
I’ve always recommend that you when learning about DirectAccess that you begin your trek with the UAG DirectAccess Test Lab Guide over at http://www.microsoft.com/downloads/details.aspx?familyid=CEEBFF8D-CDF9-4AFA-8DAA-918CDC884DC0&displaylang=en However, I know there are a lot of cowboys out there...
on
14 Aug 2010
Blog Post:
UAG SP1 DirectAccess Contest Quiz Four-Round One
Thomas W Shinder - MSFT
(If you didn’t participate in Quiz 1 – you can read the rules of the game over at http://blogs.technet.com/b/tomshinder/archive/2010/12/02/uag-sp1-directaccess-contest-quiz-one-round-one.aspx ) It’s time for Quiz 4 Round 1! This is the last quiz in Round 1. If you’re in front, make sure you don’t miss...
on
23 Dec 2010
Blog Post:
Answers to UAG SP1 DirectAccess Contest Quiz Four - Round One
Thomas W Shinder - MSFT
Yay! This is the end of round 1. Remember, each of two rounds in the contest have four quizzes – and this is the fourth quiz of round one. Let’s first get to the answers for Quiz 4 and then we’ll look at the leaderboard and the assignment of points for the round. ====================================...
on
28 Dec 2010
Blog Post:
UAG DirectAccess and the Windows Firewall with Advanced Security – Things You Should Know
Thomas W Shinder - MSFT
Both the Windows DirectAccess and the UAG DirectAccess solutions are heavily dependent on the Windows Firewall with Advanced Security. DirectAccess clients take advantage of both firewall rules and Connection Security Rules. Connection Security Rules are IPsec rules that control the IPsec tunnel mode...
on
1 Dec 2010
Blog Post:
Does Removing ISATAP for the DNS Block List Impact Security?
Thomas W Shinder - MSFT
If you choose to deploy ISATAP to support your DirectAccess deployment, one of the things you need to do is remove the name ISATAP from the DNS block list if you’re using a Windows DNS server running Windows Server 2003 SP2 or above. By default, these DNS servers will not resolve queries for the names...
on
19 Apr 2011
Blog Post:
Test Lab Guide: Demonstrate Forefront UAG SP1 RC DirectAccess with Secure Socket Tunneling Protocol (SSTP) - Blog Version
Thomas W Shinder - MSFT
Hey folks – since the TLGs are typically put up only in the download center, it makes discoverability of some of the cool content inside of them hard when it comes to search engines. Therefore, I’m going to post the full text of the TLGs on the Edge Man blog. However, I recommend that you download the...
on
16 Nov 2010
Blog Post:
Updated: Can I Migrate My Windows DirectAccess Configuration to UAG DirectAccess?
Thomas W Shinder - MSFT
(Updated Oct 5, 2010) I’ve seen a number of questions asking if there was a method you could use to migrate your Windows DirectAccess configuration to a UAG DirectAccess deployment. The answer to this question is that there is no automated method to do this. However, the manual steps aren’t very difficult...
on
4 Oct 2010
<
>