Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

9. Remote Access > DirectAccess

DirectAccess

DirectAccess has its own requirements. A DirectAccess server needs TCP port 443 open on the firewall.

DirectAccess can use a server authentication certificate for TLS (transport layer security) issued by a certificate authority (CA) that is trusted by the DirectAccess clients. CAs issue digital certificates. These certificates are used for security and, in a nutshell, verify that the public key associated with the digital certificate is held by the organization it’s been issued to. It’s public identity validation.

Commercial CAs charge to issue certificates, but there are public CAs that will issue certificates at no cost. DirectAccess will support certificates issued by a public CA.

Note

If an organization has no certificate, DirectAccess can handle that. Windows Server 2012’s DirectAccess server setup process will configure the necessary IP-HTTPS and KDC (key distribution center) proxy certificate automatically as a self-signed certificate.


  

You are currently reading a PREVIEW of this book.

                                                                                                                    

Get instant access to over $1 million worth of books and videos.

  

Start a Free 10-Day Trial


  
  • Safari Books Online
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint