Hi,
I am in the process of implementing Direct Access at our workplace and our CEO has asked me what level of encryption Direct Access uses between the client and our network.
I have found this article which explains all the data is encrypted between the client and the network
http://technet.microsoft.com/en-us/library/dd875522(v=ws.10).aspx however I haven't been able to find what level of encryption. I just need to ensure him this is equally if
not more secure than our current PPTP VPN setup.
Thanks
David
Direct Access Encryption
January 15th, 2014 3:44am
I also found this...
http://msdn.microsoft.com/en-us/library/ff956581.aspx
Which is making me wonder whether encryption is off by default and has to be switched on?
Just wanting to check whether that is the case or not.
Thanks
David
Free Windows Admin Tool Kit Click here and download it now
January 15th, 2014 5:22pm
Hi For a Windows 8 & URA 2012, first security level. It's an HTTS tunnel with Null (so no encryption). After this first level, lets have a look at IPSEC tunnel : -Infrastructure tunnel -User tunnel DNS64 pass throught the first IPSEC tunnel, so it's encrypted.
If you have a DirectAccess client, just type NETSH.EXE ADVFIREWALL CONSEC SHOW RULE NAME=ALL TYPE=DYNAMIC. You will find something like that : -MainModeSecMethods:DHGroup2-AES128-SHA256,DHGroup2-AES128-SHA1,DHGroup2-3DES-SHA1 -QuickModeSecMethods:ESP:SHA1-AES192+60min+100000kb,ESP:SHA1-AES128+60min+100000kb
So we deal with AES128, SHA256 and 3DES. Do this answer to your questions.
January 15th, 2014 9:00pm
Thanks Benoit, that is exactly what I was looking for. Many Thanks!
Free Windows Admin Tool Kit Click here and download it now
January 16th, 2014 11:51am
Hi,
You're welcome
January 16th, 2014 12:02pm
This topic is archived. No further replies will be accepted.
Other recent topics
