Well, considering the effort isn’t much different, the gain on DA is priceless.
Logon with new accounts (no cached credentials), AD synchronization, Offline folders, all just works. Ah, and no DNS issues so far as with VPN. Any particular reason you can’t, besides convincing management? -Roland From: [email protected] [mailto:[email protected]] On Behalf Of Sean Pomeroy Sent: Mittwoch, 29. April 2015 21:32 To: [email protected] Subject: Re: [mssms] SCCM 2012 R2 IBCM As of right now, DA is not on the table. On Wed, Apr 29, 2015 at 12:42 PM Kent, Mark <[email protected] <mailto:[email protected]> > wrote: Same here, DA is great. Mark Kent (MCP) Sr. Desktop Systems Engineer Computing & Technology Services - SUNY Buffalo State From: [email protected] <mailto:[email protected]> [mailto:[email protected] <mailto:[email protected]> ] On Behalf Of Roland Janus Sent: Wednesday, April 29, 2015 12:28 PM To: [email protected] <mailto:[email protected]> Subject: RE: [mssms] SCCM 2012 R2 IBCM If you have any chance of looking into Direct Access, then don’t bother with IBCM. We just did a proof of concept of DA in a lab env. 6 hours and it worked. Given the pre-requisites done before. DA is amazing From: [email protected] <mailto:[email protected]> [mailto:[email protected]] On Behalf Of Sean Pomeroy Sent: Mittwoch, 29. April 2015 16:49 To: [email protected] <mailto:[email protected]> Subject: [mssms] SCCM 2012 R2 IBCM How is everyone doing IBCM? We tried to leverage our netscalers, but they do not allow offloading and verifying the certificate and security won't allow a tunnel without inspection. We do not currently have a domain in our DMZ, it seems that is the next route we are going to go down. However, security will not allow a trust between the two domains. Now that MS has sunsetted TMG, what other options is everyone using/considering? Thanks, Sean
