During every implementation of Directory Manager an Identity Mapping exercise is completed, linking ESR records to Active Directory (AD) user accounts. When preparing data for this I ask “How many employee records do you have?” and then “and how many user accounts are there on AD?” The answers given always raise an eyebrow, revealing a disparity that can often be 1.5x or greater. This issue of having 100s or often 1,000s of active, redundant user accounts on AD is a cause of many directory and infrastructure problems: [Read more…]
Archives for November 2015
Microsoft Direct Access 2012 – Bringing The Inside…OUT
DirectAccess is a side shift in remote access technology. Traditional client-based remote access is user-initiated, requiring the user to establish a Virtual Private Network (VPN) connection any time they need access to the corporate network. By contrast, DirectAccess is completely transparent to the user. The corporate network connection is established in the background automatically whenever the user has access to the Internet. Fundamentally, DirectAccess isn’t really a VPN at all. There’s nothing virtual about this network – it is the private network. [Read more…]