Direct Access

DirectAccess is a Microsoft solution built in to newer versions of Windows Server and allows connectivity for remote users to organization network resources without the need for traditional Virtual Private Network (VPN) connections. With DirectAccess connections, remote client computers are always connected to your organization – there is no need for remote users to start and stop connections, as is required with VPN connections. In addition, your IT administrators can manage DirectAccess client computers whenever they are running and Internet connected.

Direct access has been superseded by Always On VPN due to a few known issues but a lot of companies have already implemented this so are reluctant to change. We offer the ability to fix existing implementations or expand solutions by adding more servers. Unless there is a specific use case for Direct Access instead of Always On VPN then we would typically refrain from using it. Please get in touch to find out more.

Always On VPN

Always On VPN is another Microsoft solution built into newer versions of Windows Server and is designed to overcome known issues with Direct Access. It provides a single, cohesive solution for remote access and supports domain-joined, nondomain-joined (workgroup), or Azure AD–joined devices, even personally owned devices. With Always On VPN, the connection type does not have to be exclusively user or device but can be a combination of both. For example, you could enable device authentication for remote device management, and then enable user authentication for connectivity to internal company sites and services.

Remote Desktop Services

Microsoft remote desktop services solutions have been around for years and are always getting better. We will deploy and manage connection broker servers, licensing servers, VDI and session host servers for so you don’t have to.

  • Session-based virtualization: Leverage the compute power of Windows Server to provide a cost-effective multi-session environment to drive your users’ everyday workloads.
  • VDI: Leverage Windows client to provide the high performance, app compatibility, and familiarity that your users have come to expect of their Windows desktop experience.

Within these virtualization environments, you have additional flexibility in what you publish to your users:

  • Desktops: Give your users a full desktop experience with a variety of applications that you install and manage. Ideal for users that rely on these computers as their primary workstations or that are coming from thin clients, such as with MultiPoint Services.
  • RemoteApps: Specify individual applications that are hosted/run on the virtualized machine but appear as if they’re running on the user’s desktop like local applications. The apps have their own taskbar entry and can be resized and moved across monitors. Ideal for deploying and managing key applications in the secure, remote environment while allowing users to work from and customize their own desktops.

Traditional VPN Solutions

A Virtual Private Network connection can be set up between a client machine and a VPN endpoint at the edge of your corporate network. This enables users to remotely connect to resources as if they are in the office. Typically, most firewalls support various types of VPN connectivity such as IPSEC or SSL. There are older less secure methods such as using a RAS server and dialling PPTP connections however this would not be recommended as they have security vulnerabilities.

We can install new firewalls that support VPN functionality if this is something that you don’t already have in place, and we can configure client machines with VPN software in order to establish the connection.

Please get in touch to discuss what you already have in place and we can look at the best available options to suit your needs.