DirectAccess DNS static/cname entry problem

All replies

• 

  

  0

  Sign in to vote

  Hi Daniel,
  
  Try the following:
  
  1. When the DirectAccess client is on the intranet, verify that it has successfully performed intranet detection with the netsh  name show effective command. There should be no entries in your Name Resolution Policy Table (NRPT). If so, the problem is not with DirectAccess, but with the DNS client and server.
  2. Check the permissions associated with the static and CNAME entries (the Security tab on the properties of the entries) to ensure that the user or computer account of the DirectAccess client can at least read these entries.
  
   
  

  Friday, August 21, 2009 9:31 PM
• 

  

  0

  Sign in to vote

  I see. When the client is in intranet, it still shows the NRPT table. Is it because my NLS server is not working? I noticed that when I run DA wizard, it keeps saying my NLS server is not reachable, but I can actually visit the https://nls.<domainname>/ in IE. Did I miss something for NLS? I thought it's very easy set up, just an empty web site with SSL certificate, isn't it?

  Friday, August 21, 2009 11:35 PM
• 

  

  0

  Sign in to vote

  I know the problem with my NLS server now, coz' there is nothing in the site, it returns 403. I just put a default iis page, now DA wizard says validation successful. I will test it again Monday.

  Friday, August 21, 2009 11:42 PM
• 

  

  0

  Sign in to vote

  The problem is solved now, everything is tested ok so far. Now I need to convert all possible servers to IPv6 to make DA working.

  • Proposed as answer by Joe DaviesMicrosoft employee Monday, August 24, 2009 7:47 PM
  • Marked as answer by Miles Zhang Friday, August 28, 2009 1:34 AM

  Monday, August 24, 2009 1:02 PM