Good points. I have had run into issues with users who goes to Hotels and Starbucks and they block VPN traffic. I'll for sure now look into this option for my campaign users who are always out in the field - I'm sure they would love to not have to login to the vpn then log into the terminal server :)
Deb Gilbert Vice President of Information Technology From: <[email protected]<mailto:[email protected]>> on behalf of "Michael B. Smith" <[email protected]<mailto:[email protected]>> Reply-To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Date: Wednesday, March 16, 2016 at 17:13 To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Subject: RE: [NTSysADM] DirectAccess Generally speaking, in my opinion there are two really significant advantages to DA: [1] Auto-on. (And while this doesn't tend to be a big deal for tech. people - it's a HUGE deal for sales people and upper management. At one of my clients, resolving VPN issues was 20% of their helpdesk calls. Installing DA took that to less than 1%.) [2] Easy to specify resources to share. Commonly, if you connect to a VPN, you have access to everything on the network you've connected to. DA works via a gateway concept and you can easily specify exactly which resources are available (or all of them, if you don't care). P.S. in re: [1] - there are a surprising number of hotels/motels that only allow ports 80/443. Go to Starbucks or McDonalds. From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Deb Gilbert Sent: Wednesday, March 16, 2016 6:58 PM To: [email protected]<mailto:[email protected]> Subject: Re: [NTSysADM] DirectAccess Out of curiosity what is making you look at this versus a traditional VPN? I'm interested in hearing your thoughts around it. Deb Gilbert Vice President of Information Technology From: <[email protected]<mailto:[email protected]>> on behalf of Kish n Kepi <[email protected]<mailto:[email protected]>> Reply-To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Date: Tuesday, March 15, 2016 at 05:30 To: "[email protected]<mailto:[email protected]>" <[email protected]<mailto:[email protected]>> Subject: [NTSysADM] DirectAccess I would like to hear from people who have implemented DirectAccess on Windows Server 2012 R2. 1. Did you do it yourself or hire a consultant 2. Was it difficult, or time-consuming to deploy the solution 3. To how many computers did you deploy 4. Does it work seamlessly as advertised 5. Is throughput same, faster or slower than conventional VPN? Any other questions I'm not knowledgeable enough to ask? Kish
