Connect with Confidence
Unlike VPNs, which require user intervention to initiate a remote connection to an intranet, DirectAccess automatically establishes a bi-directional connection from client computers to the corporate network.
DirectAccess is based on a deperimitization model that uses advanced encryption, authentication, and authorization technologies that enable all points on a network to securely exchange information and data over the Internet. It is built on a foundation of proven industry standards such as Internet Protocol version 6 (IPv6) and Internet Protocol security (IPsec). DirectAccess supports a range of network scenarios, including pure IPv6 and IPsec environments (end-to-end) non-IPsec intranets with IPv6 application servers (end-to-edge), or IPv4-only application servers.
Improved Manageability of Remote Users
Without DirectAccess, IT professionals can only manage mobile computers when users connect to a VPN or physically enter the office. With DirectAccess, IT professionals can manage mobile computers by updating Group Policy settings and distributing software updates any time the mobile computer has Internet connectivity, even if the user is not logged on. This flexibility allows IT professionals to manage remote computers on a regular basis and ensures that mobile users stay up-to-date with security and system health policies.
Secure and Flexible Network Infrastructure
Taking advantage of technologies such as Internet Protocol version 6 (IPv6) and Internet Protocol security (IPsec); DirectAccess provides secure and flexible network infrastructure for enterprises. Below is a list of DirectAccess security and performance capabilities:
Authentication
DirectAccess authenticates the computer, enabling the computer to connect to the intranet before the user logs on. DirectAccess can also authenticate the user and supports two-factor authentication using smart cards.
Encryption
DirectAccess uses IPsec to provide encryption for communications across the Internet.
Access Control
IT professionals can configure which intranet resources different users can access using DirectAccess, granting DirectAccess users unlimited access to the intranet or only allowing them to use specific applications and access specific servers or subnets.
IT Simplification and Cost Reduction
DirectAccess separates intranet from Internet traffic, which reduces unnecessary traffic on the corporate network by sending only traffic destined for the corporate network through the DirectAccess server. Optionally, IT can configure DirectAccess clients to send all traffic through the DirectAccess server.