Best Practices
The following are best practices from this chapter:
• Use DirectAccess to provide remote users a simpler no-touch method of securely connecting back to the office.
• Use the Network Policy Server to validate and remediate the health of clients.
• Use certificates for authentication where possible.
• For increased security, choose DirectAccess, SSTP, or L2TP with IPsec as the VPN protocol.
• Use PEAP as the preferred authentication protocol.
• Use the more secure MS-CHAP v2 if password authentication must be used.
• Use the Remote Access Management Console to troubleshoot and monitor remote access clients.
Get Windows Server® 2012 Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
