BLOG Hard To Configure, Easy To Use - Direct Access

Hard To Configure, Easy To Use - Direct Access

SHARE

What is Direct Access (DA)?

Everyone has experienced a situation where they needed to access a file or resource on their corporate network, but were at home, in a hotel, or somewhere else away from the office. Your solution was probably using a VPN connection which needed to be dialed, authorized and connected. That takes time, is cumbersome, and at times, difficult to operate. That’s where Direct Access comes in. It provides a seamless VPN connection to your corporate network without the need for any extended validation. Basically, it provides access to corporate resources without any intervention from the user, other than the usual work he does.

 

Is it secure?

Authentication is based on certificates, your computer account, and your credentials — there’s almost no difference between logging into your computer from home, to logging in from your office. Once connected, most of the communication goes to the internet via your home Internet Service Provider, and any access to company resources (printers, files, company servers, etc.), are automatically routed through the DA to your corporate network. This connection is encrypted, so it is very secure. Also, the encrypted tunnel is dialed as soon as your laptop connects to the internet, and that allows your credentials (name and password) to pass to our IAM system via a safe channel.

 

How does it work?

The encrypted connection via IPv4 is established to a publicly available DA server. This server is configured to translate all internal domain DNS records to the IPv6 addresses of those servers, and route the traffic forward using IPv4. This represents the standard IP version used for most of the communication within the network, so there’s no need to adjust firewall rules or security due to DA. And this is the advantage behind it.

So to sum it up, your computer communicates with a DA server using a tunnel based on IPv4; your requests are sent using IPv6; the DA server communicates within the corporate network once again using IPv4, and all this magically gives you access to the resources you need immediately, anytime, anywhere.

 

Why are you telling me about this?

Even though it’s not new, and is something that’s been in the IT world for a longer time, no one has mentioned it. Why? The reason is that it is rare, and it is not so easy to configure. It takes quite a lot of infrastructure behind it, to get something like this working. We at Rare Crew have been successful, and have been able to get a cutting-edge technology running. This has an approximate 0.7% market share based on idatalabs.com research. Or in other words, approximately 37 companies in California (the Silicon Valley region) which are using Direct Access — based on hgdata.com.

 

SHARE

Cookie Settings

×

When you visit any website, it may store or retrieve information on your browser in the form of cookies. This information may be about you, your preferences or your device. This is mostly used to make the website work as you would expect it to. The information doesn’t identify you but can be used to offer a more personalized web experience.

Because we respect your right to privacy, you can choose to not allow certain types of cookies. By clicking on the different category headings, you can find out more and change from our default settings. However, by blocking certain types of cookies this may negatively impact your experience on the site and the services we are able to offer.

Cookie Policy

Manage Consent Preferences

These cookies are necessary for the website to be able to function, hence cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services. This includes setting your privacy preferences, logging in or filling in forms. You can set up your browser to block or alert you about these cookies, however some parts of the website won’t work as a result. These cookies don’t store any personally identifiable information.

These cookies allow us to count visits and traffic sources, so we can measure and improve the performance of our site. They help us know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies, we will not know when you have visited our site.

These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites.    They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.