Does a machine (e.g., mobile laptop) have to be domain joined in order to use Direct Access (DA)? Or does DA allow the user to provide credentials just like VPN does when setting up DA?
-
"DirectAccess clients must be members of an Active Directory domain."
Sources:
- MS DirectAccess Technical Overview Doc: http://www.microsoft.com/downloads/details.aspx?FamilyID=64966e88-1377-4d1a-be86-ab77014495f4&displaylang=en
- http://blogs.techrepublic.com.com/10things/?p=1371
Philipp Schmid : Thx. Does it have to be the same domain as the server providing DA? E.g. can consultants use DA from their machine which might be joined to their consulting companies AD rather than the customer's AD?Shaji : The DA and the clients should belong to the same domain.iainlbc : Yes they would need to be on the same domain. You might be able to provide access to resources on both domains/networks using one DA Server if there was an existing VPN/trusted sites configuration between the two locations in place, however I am unable to verify or prove that.From iainlbc
0 comments:
Post a Comment