Windows Server 2012 Unified Remote Access Planning and Deployment

Windows Server 2012 Unified Remote Access Planning and Deployment
eBook: $29.99
Formats: PDF, PacktLib, ePub and Mobi formats
save 15%!
Print + free eBook + free PacktLib access to the book: $79.98    Print cover: $49.99
save 37%!
Free Shipping!
UK, US, Europe and selected countries in Asia.
Also available on:
Table of Contents
Sample Chapters
  • The essential administrator’s companion for the successor to DirectAccess
  • Get to grips with configuring, enabling and deploying Unified Remote Access
  • A quick start guide to have you up and running with Windows Server 2012 URA in no time

Book Details

Language : English
Paperback : 328 pages [ 235mm x 191mm ]
Release Date : December 2012
ISBN : 1849688281
ISBN 13 : 9781849688284
Author(s) : Erez Ben-Ari, Bala Natarajan
Topics and Technologies : All Books, Microsoft Servers, Networking and Servers, Enterprise, Microsoft

Table of Contents

Chapter 1: Understanding IPv6 and IPv4-IPv6 Interoperability
Chapter 2: Planning a Unified Remote Access Deployment
Chapter 3: Preparing a Group Policy and Certificate Infrastructure
Chapter 4: Installing and Configuring the Unified Remote Access Role
Chapter 5: Multisite Deployment
Chapter 6: Cross-premise Connectivity
Chapter 7: Unified Remote Access Client Access
Chapter 8: Enhanced Configurations for Infrastructure Servers
Chapter 9: Deploying NAP and OTP
Chapter 10: Monitoring and Troubleshooting Unified Remote Access
  • Chapter 1: Understanding IPv6 and IPv4-IPv6 Interoperability
    • My network's fine, so if it ain't broken, why fix it?
    • The IPv6 addressing schemes
    • IPv6 address assignment
    • IPv6 and name resolution
    • A little more about DNS
    • Multiple stacks
    • Operating system compatibility
    • Protocol transition technologies
      • ISATAP
      • DNS64 and NAT64
      • 6to4
      • Teredo
      • IP-HTTPS
    • Practical considerations for IPv6 and IPv4
    • Unified Remote Access and Group Policy
    • Public Key Infrastructure (PKI)
    • Summary
    • Chapter 2: Planning a Unified Remote Access Deployment
      • Server requirements and placement
        • Capacity planning for URA
          • Low-end server
          • High-end server
        • Server requirements – considerations
      • Basic scenarios
        • Network Location Server
        • URA certificates
        • Basic scenario considerations
      • PKI
        • PKI considerations
      • Group Policy
      • Client platforms (and unsupported clients)
        • Additional client considerations
      • Cloud scenarios
      • Advanced scenarios
        • NAP
        • OTP
        • Arrays
          • How arrays work with load balancing
          • Array challenges
        • Multi-geographic distribution
        • Forced tunneling
      • How much can my server handle?
      • Summary
      • Chapter 3: Preparing a Group Policy and Certificate Infrastructure
        • Deploying GPO in an organization
          • Group Policy Management
          • Group Policy and the registry
          • Linking, scoping, and filtering policies
          • Policy replication
          • Manual updates
        • New features with Windows Server 2012 and Windows 8 Group Policy
        • Planning group membership for URA clients and servers
        • GPO management policies and authorities
        • Managing GPO on URA servers and clients
          • Protect your stuff
        • Basic GPO problems and troubleshooting
          • Some more insight into GPOs
          • Diagnosing and fixing Group Policy problems
          • Client-specific Group Policy issues
        • Introduction to certificates and PKI
          • Asymmetric encryption
          • Digital certificates
          • Authorities, roots, and the trust chain
          • Certificate revocation and expiration
          • Certificate intended purpose
          • Certificate validation
        • Certificates used by URA
        • Public versus private certificates
        • Enterprise Certificate Authority versus Standalone Certificate Authority
        • Root Certificate Authorities and Subordinate Certificate Authorities
        • Summary
        • Chapter 4: Installing and Configuring the Unified Remote Access Role
          • Adding the URA role
          • Configuring the basic URA scenario
            • Connecting and testing with a client
          • Editing the configuration
            • Remote client options
              • Full DirectAccess or just remote management
              • Enable force tunneling
              • Helpdesk e-mail address
            • Remote Access Server options
              • Topology
              • Public URL or IP that clients use to connect to the server
              • Certificate selection for the IP-HTTPS interface
              • Enable and configure use of computer certificate
              • Enable Network Access Protection (NAP)
            • Infrastructure Servers options
              • Selection of a local NLS on the URA server, or point to a separate server
              • Certificate selection for a local NLS
              • Configuration of the Name Resolution Policy Table (NRPT)
              • List of additional domain suffixes for the NRPT
              • List of management servers that are included in the first IPsec tunnel
            • Application Servers options
            • Unified Remote Access tasks on the task pane
              • Remove configuration settings
              • Add an application server
              • Refresh management servers
              • Reload configuration
              • Enable site-to-site VPN
              • Enable multisite
              • Enable load balancing
          • Network Location Server
            • Your own NLS?
          • Configuring the Name Resolution Policy table
            • Exceptional exceptions
          • Enabling load balancing
            • Considerations for load balancing with Windows NLB
            • Load balancing with external load balancers
            • Installing the NLB feature
            • Managing the NLB cluster
          • Summary
          • Chapter 5: Multisite Deployment
            • What is multisite deployment and how does it help?
            • Multisite scenarios
            • Network infrastructure considerations and planning
              • Default gateways and routes
            • Group Policy planning
            • DNS considerations
            • Network Location Server concerns
            • Deploying load balancing
            • Certificate authentication
            • IP-HTTPS and NLS certificates
            • Connectivity verifier considerations
            • Windows 7 clients and multisite
            • The multisite configuration wizard
            • Adding more entry points
              • Using PowerShell in complex environments
            • Summary
            • Chapter 6: Cross-premise Connectivity
              • Evolving remote access challenges
              • Migration to dynamic cloud
              • The needs of modern data centers
              • Dynamic cloud access with URA
              • Adding a cloud location using Site-to-Site
              • Basic setup of cross-premise connectivity
                • DirectAccess entry point in the cloud
                • Authentication
              • Configuration steps
                • Enabling the Routing and Remote Access Server service
                • Configuring the demand-dial interface
                • Editing the connection
                • Configuring S2S with PowerShell
                  • Adding the feature
                  • Adding the S2S interface
              • Summary
              • Chapter 7: Unified Remote Access Client Access
                • Supported clients
                • Client configuration options
                • Supported client software and IPv4/IPv6 limitations
                • Interoperability with Windows 7 clients
                • Network Connectivity Assistant options
                • Client manageability considerations
                • User guidance
                • Summary
                • Chapter 8: Enhanced Configurations for Infrastructure Servers
                  • Tweaking the management servers list
                  • URA and PowerShell
                    • Using PowerShell
                    • Writing PowerShell scripts
                    • URA PowerShell cmdlets
                  • Configuring IPSec policies with advanced options
                  • Fine-tuning SSL and PKI
                  • Configuring forced tunneling
                  • Advanced options with the NCA
                  • Tweaking IPv6 for complex networks
                    • ISATAP and you
                    • Moving ISATAP
                  • Summary
                  • Chapter 9: Deploying NAP and OTP
                    • NAP basic concepts
                      • How does NAP work (generally)?
                    • NAP and URA
                    • Enabling NAP on URA
                    • Introduction to OTP
                    • How OTP works with URA
                    • Enabling OTP
                      • OTP and Windows 7 clients
                      • Creating the OTP certificate template
                      • Creating the OTP request signing template
                      • Adding the template to the CA
                      • Configuring the URA server as an authentication agent
                      • Enabling OTP on URA
                      • Troubleshooting tips
                    • Summary
                    • Chapter 10: Monitoring and Troubleshooting Unified Remote Access
                      • Monitoring the URA server (or servers)
                      • Monitoring URA clients
                      • Generating reports
                      • Troubleshooting URA
                      • Common problems, issues, and mistakes
                        • ISATAP
                        • Group Policy
                        • DNS resolution
                        • ISP problems
                        • Certificate problems
                        • NLS
                      • Server troubleshooting
                      • Connectivity problems
                        • Client logs
                        • Manually cleaning up clients
                      • Client troubleshooting
                      • Advanced diagnostics
                        • Windows Firewall tracing
                        • IP Helper Service tracing
                        • Final thoughts on troubleshooting
                      • Summary

                      Erez Ben-Ari

                      Erez Ben-Ari is a long time Technologist and Journalist, and has worked in the Information Technology industry since 1991. During his career, Erez has provided security consulting and analysis services for some of the leading companies and organizations in the world, including Intel, IBM, Amdocs, CA, HP, NDS, Sun Microsystems, Oracle and many others. His work has gained national fame in Israel, and he has been featured in the press regularly. Having joined Microsoft in 2000, Erez worked for many years in Microsoft’s Development Center in Israel, where Microsoft’s ISA Server was developed. Being a part of the release of ISA 2000, ISA 2004 and ISA 2006, Erez held several roles, including Operation engineering, Software testing, Web-based software design and testing automation design. Now living in the United States, Erez still works for Microsoft, currently as a senior support escalation engineer for UAG.

                      As a journalist, Erez has been writing since 1995, and has written for some of the leading publications in Israel and in the United States. He has been a member of the Israeli National Press Office since 2001, and his personal blogs are read by thousands of visitors per month.Erez has also written, produced and edited content for TV and Radio, working for Israel’s TV Channel 2, Ana-Ney communications, Radio Haifa and other venues.

                      Erez is also the author of the hugely successful titles “Microsoft Forefront UAG 2010 Administrator's Handbook” and “Mastering Microsoft Forefront UAG 2010 Customization”, also by Packt Publishing. Both titles have received all 5-star reviews on Amazon and are considered to be the most comprehensive guides to UAG in existence.

                      Bala Natarajan

                      Bala Natarajan has an engineering degree in Electronics & Instrumentation from India. He graduated in 1987 and started his career as a System Support Engineer for Unix, Novell NetWare, and MSDOS. From 1994 onwards, he specialized in Computer Networking to provide large enterprises in India with design and support for LAN and WAN networking using Cisco and Nortel networking gears. He moved to the US and worked in a large telecom company as a dedicated Support Engineer to connect over 300 school districts in the state of Washington. He joined Microsoft in 1998 as a Support Engineer in the Platforms Networking team and the Enterprise Security team. He worked as a pre-release product Support Engineer for TMG 2010, UAGDA. In 2011, he moved to the Windows Core networking team as a Program Manager for DirectAccess.
                      Sorry, we don't have any reviews for this title yet.

                      Code Downloads

                      Download the code and support files for this book.

                      Submit Errata

                      Please let us know if you have found any errors not listed on this list by completing our errata submission form. Our editors will check them and add them to this list. Thank you.

                      Sample chapters

                      You can view our sample chapters and prefaces of this title on PacktLib or download sample chapters in PDF format.

                      Frequently bought together

                      Windows Server 2012 Unified Remote Access Planning and Deployment +    Microsoft Dynamics GP 2010 Implementation =
                      50% Off
                      the second eBook
                      Price for both: $45.60

                      Buy both these recommended eBooks together and get 50% off the cheapest eBook.

                      What you will learn from this book

                      • Refresh your knowledge of various VPN solutions over the years and the history of DA
                      • Gain a full picture of the exciting improvements in the new DirectAcess access product in Windows 2012
                      • Put URA into perspective by learning about IPv4 and IPv6
                      • Review the scenarios and architecture underlying Unified Remote Access
                      • Take a deep dive into deploying GPO in an organization
                      • Understand Multi-Site scenarios with URA
                      • Explore how to deploy cloud-based scenarios for URA
                      • Discover interoperability with Windows 7 clients
                      • Take advantage of step by step instructions for configuring and enabling URA
                      • Fine tune the security and network including advanced configuration with PowerShell
                      • Get to grips with URA monitoring and reports
                      • Learn to avoid common problems, issues and mistakes

                      In Detail

                      DirectAccess, introduced in Windows Server 2008 R2, has been a ground breaking VPN-like connectivity solution, adopted by thousands of organizations worldwide. Allowing organizations to deploy without manually configuring every client and providing always-on connectivity has made this technology world-famous. Now, with Windows Server 2012, this has been made even easier to deploy, with a new friendly user interface, easy-start wizard and built in support tools.

                      With Unified Remote Access, Windows server 2012 offers a unique way to provide remote access that is seamless and easier to deploy than traditional VPN solutions.

                      With URA, the successor to DirectAccess, your users can have full network connectivity that is always-on. If you have deployed Windows Server 2012 or are planning to, this book will help you implement Unified Remote Access from concept to completion in no time!

                      Unified Remote Access, the successor to DirectAccess, offers a new approach to remote access, as well as several deployment scenarios to best suit your organization and needs. This book will take you through the design, planning, implementation and support for URA, from start to finish.

                      "Windows Server 2012 Unified Remote Access Planning and Deployment" starts by exploring the mechanisms and infrastructure that are the backbone of URA, and then explores the various available scenarios and options. As you go through them, you will easily understand the ideal deployment for your own organization, and be ready to deploy quickly and easily. Whether you are looking into the simplest deployment, or a complex, multi-site or cloud scenario, "Windows Server 2012 Unified Remote Access Planning and Deployment" will provide all the answers and tools you will need to complete a successful deployment.


                      "Windows Server 2012 Unified Remote Access Planning and Deployment" is a quick start tutorial full of step-by-step instructions to guide you through planning and deploying Unified Remote Access; the successor to DirectAccess.

                      Who this book is for

                      If you are a System Administrator or Engineer who has strong knowledge of networking and deployment for the Microsoft family of operating systems and software, then "Windows Server 2012 Unified Remote Access Planning and Deployment" is for you.

                      You should have a sound understanding of TCP/IP networking, as well as deploying and supporting Windows Server and Client operating systems.

                      Code Download and Errata
                      Packt Anytime, Anywhere
                      Register Books
                      Print Upgrades
                      eBook Downloads
                      Video Support
                      Contact Us
                      Awards Voting Nominations Previous Winners
                      Judges Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software
                      Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software