DirectAccess Deprecation RRS feed

  • General discussion

  • According to numerous articles online Microsoft is gradually trying to convince customers to transition from DirectAccess to Always On VPN. For example:

    Always On VPN seems more complicated to set up and doesn't have the management capabilities of DirectAccess - it has to be managed using scripts, Intune or SCCM. Does anyone have an idea of the Microsoft plans to support DirectAccess in the future and why it will eventually be deprecated? 

    Friday, March 29, 2019 10:53 AM

All replies

  • Microsoft plans to support DirectAccess through the lifetime of Windows Server 2019. I'm not sure Always On VPN is more complicated than DirectAccess, but different. The biggest challenge most people face is the deployment. Always On VPN does not use Active Directory and group policy like DirectAccess does. Instead it is designed to be managed using Intune (or another third-party MDM). Once you get to Intune though it is much easier, IMO.

    Here are few reference articles for deploying both Windows 10 Always On VPN device and user tunnels using Microsoft Intune.

    Richard M. Hicks
    Microsoft Cloud & Datacenter MVP
    Founder and Principal Consultant - Richard M. Hicks Consulting, Inc.

    Monday, April 1, 2019 11:06 PM