Plan Remote Access with OTP Authentication

Applies To: Windows Server 2012 R2, Windows Server 2012

Windows Server 2012 combines DirectAccess and Routing and Remote Access Service (RRAS) VPN into a single Remote Access role. This overview provides an introduction to the planning steps required in order to deploy Windows Server 2012 Remote Access with one-time password (OTP) client authentication.

• Step 1: Plan an Advanced Single Server Deployment2. This step includes planning for the infrastructure required to deploy a single server. It includes planning for network and server settings, certificate requirements, DNS settings, network location server deployment, DirectAccess management servers, Active Directory settings, and Group Policy objects (GPOs).

• Step 2: Plan the RADIUS Server Deployment.

• Step 3: Plan OTP Certificate Deployment.

• Step 4: Plan for OTP on the Remote Access Server

After you have completed these planning steps, see Configure DirectAccess with OTP Authentication. For information on configuring a multisite deployment as a proof of concept in a lab environment, see Test Lab Guide: Demonstrate DirectAccess with OTP Authentication and RSA SecurID.