Atjaunināt sīkdatņu piekrišanu

E-grāmata: Implementing DirectAccess with Windows Server 2016

5.00/5 (2 ratings by Goodreads)
  • Formāts: PDF+DRM
  • Izdošanas datums: 10-Sep-2016
  • Izdevniecība: APress
  • Valoda: eng
  • ISBN-13: 9781484220597
Citas grāmatas par šo tēmu:
  • Formāts - PDF+DRM
  • Cena: 77,31 €*
  • * ši ir gala cena, t.i., netiek piemērotas nekādas papildus atlaides
  • Ielikt grozā
  • Pievienot vēlmju sarakstam
  • Šī e-grāmata paredzēta tikai personīgai lietošanai. E-grāmatas nav iespējams atgriezt un nauda par iegādātajām e-grāmatām netiek atmaksāta.
Implementing DirectAccess with Windows Server 2016Palielināt
  • Formāts: PDF+DRM
  • Izdošanas datums: 10-Sep-2016
  • Izdevniecība: APress
  • Valoda: eng
  • ISBN-13: 9781484220597
Citas grāmatas par šo tēmu:

DRM restrictions

  • Kopēšana (kopēt/ievietot):

    nav atļauts

  • Drukāšana:

    nav atļauts

  • Lietošana:

    Digitālo tiesību pārvaldība (Digital Rights Management (DRM))
    Izdevējs ir piegādājis šo grāmatu šifrētā veidā, kas nozīmē, ka jums ir jāinstalē bezmaksas programmatūra, lai to atbloķētu un lasītu. Lai lasītu šo e-grāmatu, jums ir jāizveido Adobe ID. Vairāk informācijas šeit. E-grāmatu var lasīt un lejupielādēt līdz 6 ierīcēm (vienam lietotājam ar vienu un to pašu Adobe ID).

    Nepieciešamā programmatūra
    Lai lasītu šo e-grāmatu mobilajā ierīcē (tālrunī vai planšetdatorā), jums būs jāinstalē šī bezmaksas lietotne: PocketBook Reader (iOS / Android)

    Lai lejupielādētu un lasītu šo e-grāmatu datorā vai Mac datorā, jums ir nepieciešamid Adobe Digital Editions (šī ir bezmaksas lietotne, kas īpaši izstrādāta e-grāmatām. Tā nav tas pats, kas Adobe Reader, kas, iespējams, jau ir jūsu datorā.)

    Jūs nevarat lasīt šo e-grāmatu, izmantojot Amazon Kindle.

Learn how to design, plan, implement, and support a secure remote access solution using DirectAccess in Windows Server 2016. Remote Access has been included in the Windows operating system for many years. With each new operating system release, new features and capabilities have been included to allow network engineers and security administrators to provide remote access in a secure and cost-effective manner.

DirectAccess in Windows Server 2016 provides seamless and transparent, always on remote network connectivity for managed Windows devices. DirectAccess is built on commonly deployed Windows platform technologies and is designed to streamline and simplify the remote access experience for end users. In addition, DirectAccess connectivity is bidirectional, allowing administrators to more effectively manage and secure their field-based assets.

Implementing DirectAccess with Windows Server 2016 provides a high-level overview of how DirectAccess works. The vision and evolution of DirectAccess are outlined and business cases and market drivers are explained. DirectAccess is evaluated against traditional VPN and this book describes the Windows platform technologies that underpin this solution. In addition, this book:









Explains how the technology works and the specific IT pain points that it addresses

Includes detailed, prescriptive guidance for those tasked with implementing DirectAccess using Windows Server 2016

Addresses real-world deployment scenarios for small and large organizations

Contains valuable tips, tricks, and implementation best practices for security and performance<





























What youll learn















A high-level understanding of the various remote access technologies included in Windows Server 2016.

Common uses cases for remote access, and how best to deploy them in a secure, stable, reliable, and highlyavailable manner.

Valuable insight in to design best practices and learn how to implement DirectAccess and VPN with Windows Server 2016 according to deployment best practices.



























Who This Book Is For





IT administrators, network, and security administrators and engineers, systems management professionals, compliance auditors, and IT executive management (CIO, CISO) are the target audience for this title. 
About the Author xix
About the Technical Reviewers xxi
Acknowledgments xxiii
Introduction xxv
Chapter 1 DirectAccess Overview
1(8)
DirectAccess
1(1)
Seamless and Transparent
1(1)
Bi-directional
1(1)
Not a Protocol
2(1)
IPv6
2(1)
IPv6 Transition Technologies
2(1)
Outbound Management
2(1)
Network Topology and IPv6 Transition Technologies
3(1)
IPv6 Translation Components
3(1)
Evolution of DirectAccess
3(2)
Forefront Unified Access Gateway
4(1)
Forefront UAG Challenges
4(1)
Windows Server 2012
4(1)
Windows Server 2012 R2
4(1)
Windows Server 2016
4(1)
How DirectAccess Works
5(1)
DirectAccess Supported Clients
5(1)
DirectAccess Security
6(1)
Why DirectAccess?
7(1)
DirectAccess vs. VPN
7(1)
DirectAccess Limitations and Drawbacks
7(1)
Choosing Between DirectAccess and VPN
8(1)
Summary
8(1)
Chapter 2 Plan for DirectAccess
9(12)
DirectAccess Server
9(1)
System Requirements
9(1)
Domain Membership
9(1)
Windows Firewall
10(1)
IPv6
10(1)
Redundancy
10(4)
Load Balancing
10(1)
Geographic Redundancy
11(1)
Network Topology
11(1)
Edge Firewall Configuration
12(1)
Network Topology Considerations
13(1)
DirectAccess Clients
14(1)
Supported Clients
14(1)
Windows Firewall
14(1)
IPv6
14(1)
Connectivity Validation
15(1)
Active Directory
15(1)
Forest and Domain Functional Levels
15(1)
Read-Only Domain Controllers (RODC)
15(1)
Administrative Rights
15(1)
Security Groups
15(1)
Group Policy Objects
15(1)
Additional GPOs
16(1)
Certificates
16(1)
Computer Certificates
16(1)
Certification Authority
16(1)
Certificate Requirements
16(1)
SSL Certificates
16(1)
Network Location Server
17(1)
Web Server
17(1)
SSL Certificate
17(1)
DNS
17(1)
Internal
17(1)
External
18(1)
Strong User Authentication
18(1)
Certificate Server
18(1)
RSA SecurID
18(1)
One-Time Passwords (OTP)
18(1)
Smart Cards
18(1)
Security Groups
18(1)
User Accounts
18(1)
Force Tunneling
18(1)
Manage Out
19(1)
ISATAP
19(1)
Supportability
19(1)
Summary
19(2)
Chapter 3 Install DirectAccess
21(24)
DirectAccess Server
21(22)
Operating System Installation
21(1)
Single-NIC Configuration
21(1)
Dual-NIC Configuration
22(7)
Join Domain and Apply Updates
29(1)
Third-Party Software
29(1)
Certificates
29(10)
Installing the DirectAccess-VPN Role
39(4)
Configuring Additional Nodes
43(1)
Summary
43(2)
Chapter 4 Configure DirectAccess with the Getting Started Wizard
45(12)
Before We Begin
45(1)
Getting Started Wizard
45(10)
Deployment Options
46(1)
Installing DirectAccess
47(2)
Review and Edit Settings
49(5)
Confirm Policy Application
54(1)
Limitations and Drawbacks
55(1)
DirectAccess Client Targeting
55(1)
Network Location Server
56(1)
IP-HTTPS Certificate
56(1)
Client Support
56(1)
Deployment Flexibility
56(1)
Summary
56(1)
Chapter 5 Configure DirectAccess with the Remote Access Setup Wizard
57(26)
Remote Access Setup Wizard
57(2)
Deployment Options
58(1)
Installing DirectAccess
59(23)
Step 1 Remote Clients
60(4)
Step 2 Remote Access Server
64(5)
Step 3 Infrastructure Servers
69(11)
Confirm Policy Application
80(1)
Step 4 Application Servers (Optional)
81(1)
Summary
82(1)
Chapter 6 Configure DirectAccess Load Balancing
83(20)
Load Balancing
83(1)
DirectAccess Load Balancing
83(1)
Windows Network Load Balancing
83(1)
NLB Drawbacks
84(1)
External Load Balancer
84(1)
Capacity Planning
85(1)
Preparing for Load Balancing
85(4)
Add NLB Feature
85(3)
Hyper-V and NLB
88(1)
Enable Network Load Balancing (NLB)
89(10)
VMware and NLB
94(2)
Add DirectAccess Servers
96(3)
Enable External Load Balancer (ELB)
99(2)
VIP Assignment
100(1)
Load Balancer Configuration
101(1)
Summary
101(2)
Chapter 7 Configure DirectAccess Geographic Redundancy
103(30)
Client Support
103(1)
Windows 8.x and Windows 10
103(1)
Windows 7
103(1)
Preparing for Multisite
104(1)
DirectAccess Servers
104(1)
Security Groups
104(1)
DNS
105(1)
IP-HTTPS Certificate
105(1)
Enable Multisite
105(18)
Create the First Entry Point
105(8)
Add Additional Entry Points
113(10)
Enable Load Balancing for an Entry Point
123(1)
Multisite and GSLB
123(8)
GSLB Deployment Scenarios
123(1)
GSLB Configuration
124(1)
Enable GSLB Post-Deployment
124(6)
GSLB Operation
130(1)
Summary
131(2)
Chapter 8 Enable Two-Factor Authentication
133(26)
Smart Cards
133(1)
Physical Smart Cards
133(1)
Virtual Smart Cards
133(1)
One-Time Passwords
134(1)
Supported OTP Solutions
134(1)
Prerequisites
134(1)
Client Authentication
134(1)
Certification Authority
134(1)
OTP and Force Tunneling
135(1)
Windows 7 Clients
135(1)
DirectAccess Configuration
135(1)
Enable Smart Card Authentication
135(3)
Configure DirectAccess
135(1)
Smart Card End User Experience
136(2)
Enable OTP Authentication
138(19)
Configure Certificate Templates
138(11)
Configure Certification Authority (CA)
149(1)
Configure RADIUS OTP
150(1)
Configure DirectAccess
150(5)
OTP End User Experience
155(2)
Deployment Considerations
157(1)
Increased Complexity
157(1)
Added Expense
157(1)
Limited Flexibility
157(1)
Incomplete OTP Functionality
158(1)
Reduced Scalability and Performance
158(1)
Diminished User Experience
158(1)
Summary
158(1)
Chapter 9 Support Windows 7 Clients
159(16)
Deployment Considerations
159(1)
Multisite Support
159(1)
Degraded Performance
159(1)
Reduced Scalability
160(1)
DirectAccess Connectivity Assistant (DCA) v2.0
160(1)
Configuring DCA 2.0
160(8)
Deploy Group Policy Templates
161(1)
Create Group Policy Object
161(5)
Create WMI Filter
166(1)
Deploy Group Policy Object
167(1)
Installing DCA 2.0
168(1)
DCA Operation
169(4)
Connectivity Status
169(1)
Advanced Diagnostics
170(2)
Local DNS Resolution
172(1)
Summary
173(2)
Chapter 10 Monitor and Report
175(20)
System Monitoring
175(4)
Dashboard
175(2)
Operations Status
177(2)
User Monitoring
179(6)
Remote Access Client Status
179(6)
Accounting
185(2)
Inbox Accounting
185(1)
RADIUS Accounting
186(1)
Reporting
187(6)
Summary
193(2)
Chapter 11 Troubleshoot
195(36)
DirectAccess Client Connection Process
195(1)
Server and Client Configuration
196(1)
DirectAccess Server
196(9)
Group Policy
196(2)
Server Health
198(1)
Network Connectivity
199(3)
Name Resolution
202(1)
Authentication
202(1)
Certificates
203(1)
IPv6
203(1)
Windows Firewall
203(1)
Services
204(1)
Unsupported Configurations
205(1)
DirectAccess Client
205(9)
Operating System SKU
205(2)
Group Policy
207(1)
Network Connectivity
208(1)
Domain Connectivity
208(1)
Certificates
208(1)
IPv6
209(1)
IPv6 Transition Technologies
209(3)
Services
212(1)
Windows Firewall
212(2)
Connectivity Troubleshooting
214(9)
Connection Security Rules
214(2)
Ping Tunnel Endpoints
216(2)
Ping Internal Servers
218(1)
IPsec Connections
219(1)
Name Resolution
220(3)
Helpful Tools and Commands
223(6)
DirectAccess Connection Status
223(2)
DirectAccess Connectivity Assistant
225(1)
IPsec Auditing
225(1)
Firewall Logging
225(1)
Message Analyzer
226(1)
Nmap
227(1)
Tracing
227(1)
DirectAccess Client Troubleshooting Tool
228(1)
Summary
229(2)
Chapter 12 Migrate to Windows Server 2016 DirectAccess
231(6)
Requirements
231(1)
IP Addresses
231(1)
Public Hostname
231(1)
Security Groups
232(1)
Group Policy Objects
232(1)
Configuration
232(2)
Client Migration
234(1)
Additional Use Cases
235(1)
QA and Testing
235(1)
Delegated Administration
235(1)
Configuration Changes
235(1)
Unique Client Requirements
235(1)
Summary
236(1)
Chapter 13 Managing Out
237(14)
IPv6
237(1)
ISATAP
237(1)
Supportability
237(1)
ISATAP Router
238(1)
ISATAP Client
238(5)
Manual Configuration
238(1)
DNS
238(1)
Group Policy
239(2)
Connectivity Testing
241(2)
Remote Management
243(1)
DirectAccess Management Computers
243(1)
Windows Firewall
244(5)
GPO
244(4)
Additional Services
248(1)
Summary
249(2)
Appendix A DirectAccess with Native IPv6
251(10)
IPv6 Readiness
251(1)
Remote Access Setup Wizard
252(3)
Load Balancing
255(3)
Multisite
258(1)
Network Prefix Routing
259(1)
6to4
259(1)
Teredo
259(1)
IP-HTTPS
259(1)
Native IPv6 HTTPS
260(1)
Managing Out
260(1)
Summary
260(1)
Appendix B DirectAccess and Force Tunneling
261(6)
How It Works
261(1)
Use Cases
261(1)
Web-Browsing Policy
261(1)
Network Bridging
261(1)
Prerequisites
262(1)
Enable Force Tunneling
262(1)
Name Resolution Policy Table
263(1)
Define Corporate Proxy
263(1)
Limitations and Drawbacks
264(1)
Poor Performance
264(1)
Reduced Scalability
264(1)
Web-Browsing Experience
265(1)
Force Tunneling and OTP
265(1)
All or Nothing
265(1)
Summary
265(2)
Appendix C DirectAccess Security Hardening
267(6)
Security Best Practices
267(1)
IP-HTTPS Preauthentication
267(1)
Windows Firewall
268(2)
Considerations for ICMP
270(1)
SSL/TLS
270(1)
Null Cipher Suites
271(1)
Server Core
271(1)
Minimal Server Interface
272(1)
Summary
272(1)
Index 273
Richard Hicks (MCP, MCSE, MCTS, MCITP:EA, MCSA, MVP) is a network and information security expert specializing in Microsoft technologies. As a Microsoft Cloud and Datacenter/Enterprise Security MVP, he has traveled around the world speaking to network engineers, security administrators, and IT professionals about Microsoft networking and security. Richard has nearly 20 years of experience working in large scale corporate computing environments and has designed and deployed perimeter defense and secure remote access solutions for some of the largest companies in the world. Richard is the Founder and Principal Consultant of Richard M. Hicks Consulting, and focuses on helping organizations large and small implement DirectAccess, VPN, and cloud networking solutions on Microsoft platforms. Richard is a contributing author for TechGenix (WindowSecurity.com, WindowsNetworking.com, CloudComputingAdmin.com) and the Petri IT Knowledgebase. He has also produced video training courses for Pluralsight. Richard is an avid fan of Major League Baseball and in particular the Los Angeles Angels (of Anaheim!). He also enjoys fish tacos, craft beer, and single malt Scotch whisky. He lives and works in beautiful, sunny, Southern California. Keep up to date on all things DirectAccess by visiting his web site at directaccess.richardhicks.com.
Biežāk uzdotie jautājumi par e-grāmatām Biežāk uzdotie jautājumi par e-grāmatām
Permanent link: https://www.kriso.lv/db/97814842205972e.html
Keywords: