Windows Server 2012 – Deploying SSTP VPNs
KB ID 0000819 Problem SSTP gives you the ability to connect to your corporate network from any location that has an internet connection, and is not filtering https. This port is usually open for normal secure web traffic. Traditional VPN connections require ports and protocols to be open for them to work, which makes a solution that runs over TCP port 443 attractive. Thoughts: While I can see why this is a good idea, Microsoft has...
Direct Access – Error While Running The Remote Access Wizard
KB ID 0000839 Problem Seen on Windows Server 2012, when configuring direct access, while running the ‘Getting Started Wizard’ you have to choose the network topology. You have a choice of edge, behind an edge device (with 1 NIC), or behind an edge device (with 2 NICs). Each choice you make will present you with one of the following errors. An external adapter with a public IP address, IPv6 enabled and without a domain...
IIS: How to Create a Certificate Request
KB ID 0000840 Problem If you would like to obtain a digital certificate either from your own CA, or from a public certificate vendor, you need to submit a certificate signing request (csr) first. Solution Note: I’m making the assumption you have already installed the Web Server (IIS) role on your server. 1. Windows Key+R > iis.msc {Enter} > Select the servername > Server Certificates. 2. Create Certificate Request >...
Error – Remove DirectAccess configuration settings from localhost before removing the Remote Access role.
KB ID 0000844 Problem When attempting to remove the Direct Access role from a Windows 2012 Server, you see the following; The validation process found problems on the server from which you want to remove features. The selected features cannot be removed from the selected server. Click OK to select different features. DirectAccess is configured on {host-name}. Remove DirectAccess configuration settings form {host-name} before removing...
Windows Server – Secure RDP Access with Certificates
KB ID 0000944 Problem This ensures that traffic that is sent over an RDP connection to a server is protected by TLS/SSL Encryption. IT DOES NOT stop clients connecting to an RDP server if they do not have a trusted certificate. If you need that level of security, that should already be done by 802.1x. Solution Create an RDP Certificate Template 1. On the domain CA Launch the Certification Authority Management Console > Certificates...