Direct Access back in Windows Server 8 – What’s new ?– a quick overview

Published 08 October 11 10:33 AM | forefrontsecurity

If you have seen this Windows Server 8 BUILD session “Enabling the hybrid cloud using remote access appliances”, you know that all new feature of DirectAccess are back in Windows Server. I just want to have an overview of what DirectAccess looks like in Windows Server 8.

First, DirectAccess is a Role : “Remote Access”


You wan deploy both VPN or DirectAccess.


You can choose to deploy Remote Access in a Single Nic configuration. This is very interesting and needs a deeper analyze to see how it is going to work.


After the wizard completion, you will see this new interface :


Another interesting point is the ability to provide DirectAccess to Windows 8 endpoints without IPSEC. Also, needs a deeper analyze. We can see that certainly, Windows 8 DA Connectivity is not the same as within Windows 7. You can active OTP authentication with one click Sourire


Perhaps the most important feature : Multisite. With Forefront UAG and Windows 7, there was no easy ways to provide dynamic multisite DirectAccess scenario. We can see this is fully integrated in Windows Server 8. Just enable Multisite (requires IPSEC and no Self-Generated Certificates), and declare Entry Points


This is available for Windows 8 only, or both Windows 7 and 8.


There are 2 new DNS entry. Don’t know the goal for the moment.


When Multisite is activated, a new interface is available, and you can manage each nodes


To summary, this is just a quick overview of what you can find in the new Remote Access Role. We need to go further to understand how all is working. I am very exiting to go technically deeper, but mostly working on new functional scenario. This overview lets me think that DA deployment is now really easy. The Windows Server 8 team works very hard to provide a simple and complete wizard, leaving us doing mostly functional architecture. Thank You !

Published by Olivier DETILLEUX


No Comments

This Blog


    We talk about Forefront Unified Access Gateway, Web SSO, DirectAccess, Threat Management Gateway, Identity Manager and other Forefront Technologies. Also, some post about Active Directory and other Identity and Access technos.