Implementing Always On VPN: Modern Mobility with Microsoft Windows 10 and Windows Server 2022

Implementing Always On VPN: Modern Mobility with Microsoft Windows 10 and Windows Server 2022

by Richard M. Hicks
Implementing Always On VPN: Modern Mobility with Microsoft Windows 10 and Windows Server 2022

Implementing Always On VPN: Modern Mobility with Microsoft Windows 10 and Windows Server 2022

by Richard M. Hicks

Paperback(1st ed.)

$54.99
Choose Expedited Shipping at checkout for delivery by Wednesday, December 14

Overview

Implement and support Windows 10 Always On VPN, the successor to Microsoft's popular DirectAccess. This book teaches you everything you need to know to test and adopt the technology at your organization that is widely deployed around the world.

The book starts with an introduction to Always On VPN and discusses fundamental concepts and use cases to compare and contrast it with DirectAccess. You will learn the prerequisites required for implementation and deployment scenarios. The book presents the details of recommended VPN prools, client IP address assignment, and firewall requirements. Also covered is how to configure Routing and Remote Access Service (RRAS) along with security and performance optimizations. The Configuration Service Provider (CSP) is discussed, and you will go through provisioning Always On VPN to Windows 10 clients using PowerShell and XML as well as Microsoft Intune. Details about advanced client configuration and integration with Azure security services are included. You will know how to implement Always On VPN infrastructure in a redundant and highly available (HA) configuration, and guidance for ongoing system maintenance and operational support for the VPN and NPS infrastructure is provided. And you will know how to diagnose and troubleshoot common issues with Always On VPN.

After reading this book, you will be able to plan, design, and implement a Windows 10 Always On VPN solution to meet your specific requirements.

What Will You Learn

• Prepare your infrastructure to support Windows 10 Always On VPN on premises or in the cloud
• Provision and manage Always On VPN clients using modern management methods such as Intune
• Understand advanced integration concepts for extending functionality with Microsoft Azure
• Troubleshoot and resolve common configuration and operational errors for your VPN

Who This Book Is For

IT professionals and technology administrators for organizations of all sizes


Related collections and offers

Product Details

ISBN-13: 9781484277409
Publisher: Apress
Publication date: 11/26/2021
Edition description: 1st ed.
Pages: 357
Product dimensions: 7.01(w) x 10.00(h) x (d)

About the Author

Richard Hicks is the founder and principal consultant at Richard M. Hicks Consulting, Inc. He is a widely recognized enterprise mobility and security infrastructure expert with more than 25 years of experience implementing secure remote access and Public Key Infrastructure (PKI) solutions for organizations around the world. Richard is a former Microsoft Most Valuable Professional (MVP 2009-2019) and is active in the online community, sharing his knowledge and experience with IT professionals on his blog and through various social media channels. Visit his web site https://www.richardhicks.com/ or connect with him on Twitter @richardhicks.

Table of Contents

Chapter 1 – Always On VPN Overview

• This chapter will introduce Always On VPN as a technology and cover the concepts and underlying technologies used by the solution. We will discuss the high-level use cases and compare with its predecessor, DirectAccess.

Chapter 2 – Plan an Always On VPN Deployment

• In this chapter we will dive more deeply into the implementation prerequisites. We will identify infrastructure requirements, discuss networking and authentication requirements, and learn about various deployment scenarios. Guidance will be provided for certificate services configuration and networking models will be covered. Details about VPN prools, client IP address assignment, and firewall requirements will also be covered.

Chapter 3 – Configure Windows Server for Always On VPN

In this chapter, configuring Windows Server Routing and Remote Access Service (RRAS) will be covered in detail. In addition, we will cover Remote Access Service (RRAS) configuration and perform server security and performance optimizations.

Chapter 4 – Provision Always On VPN Clients

This chapter will provide guidance for provisioning Always On VPN to Windows 10 clients. The Configuration Service Provider (CSP) mode will be discussed, and readers will learn to create a configuration XML file and provision it locally using PowerShell. In addition, Intune deployment using custom XML and native VPN profiles will be covered.

Chapter 5 – Cloud Deployments

• For those organizations deploying infrastructure in a public cloud, this chapter will outline how to deploy an Always On VPN infrastructure in Microsoft Azure. Deploying RRAS in Azure and leveraging native cloud VPN infrastructure such as Azure Virtual Network Gateway and Azure Virtual WAN will be discussed.

Chapter 6 – Azure Integration
• This chapter will provide guidance for advanced client configuration and integration with Azure security services. Azure MFA integration with on-premises NPS will be covered in detail. Also, Azure Conditional Access will be covered.

Chapter 7 – High Availability
• This chapter will describe in detail how to implement an Always On VPN infrastructure in a redundant and highly available configuration. Locally redundancy NPS and VPN servers will be covered. Guidance for multisite deployment with geographic redundancy for VPN servers will be included.

Chapter 8 – Monitor and Report
• This chapter will cover ongoing system maintenance and operational support for the VPN and NPS infrastructure. It will include guidance for ensuring automatic certificate management, how to renew certificates that cannot be managed automatically, how to find logging details, and which monitoring tools can be effective for daily operation.

Chapter 9 – Troubleshooting
• This chapter will provide detailed guidance for troubleshooting and resolving common configuration and operational errors for the VPN and authentication infrastructure, from both the client and server perspective. Common failure scenarios will be covered, and detailed resolution steps will be provided.

Chapter 10 – Migrate from DirectAccess to Always On VPN
• Always On VPN is most commonly deployed to replace existing DirectAccess infrastructure. In this chapter I’ll provide guidance and share experience for migrating from DirectAccess to Always On VPN seamlessly and without disruption.

Customer Reviews