Posted on

Create an SSTP VPN Server in Windows Server 2016

Create an L2TP VPN Server in Windows 2016-39

I had already created an L2TP VPN server in Windows Server 2016 which worked great with my IOS devices but I found did not work so well with Windows 10.  Therefore I created an SSTP VPN Server to access my devices via my home broadband connection (Sky Fibre).  I found that this works perfectly with all my Windows 10 machines.  The main difference between L2TP and SSTP is that for SSTP we need to use certificates.  We will cover everything you need to get this up and running below.

Continue reading “Create an SSTP VPN Server in Windows Server 2016”

Posted on

Create an L2TP VPN Server in Windows Server 2016

Create an L2TP VPN Server in Windows 2016-39

I wanted to create a VPN server that I could use to access my home internet connection (Sky Fibre).  I chose L2TP for this task as I want to connect to the VPN fairly frequently with the iPhone/iPad.  As the IOS devices have a built in L2TP VPN client and I didn’t want to rely on a 3rd party one this made it an easy choice.  For Windows 10 machines connecting in to my VPN I setup an SSTP VPN connection on the same server.  The reason for this was that Windows 10 doesn’t play well with L2TP behind a NAT firewall.  The setup for the L2TP VPN is as below.

Continue reading “Create an L2TP VPN Server in Windows Server 2016”

Posted on

Migrating Active Directory from 2008 R2 to 2016

For this post I just wanted to note down my thoughts and plan that I recently used to migrate a client from Active Directory 2008 R2 to Active Directory 2016.  For this work the servers involved were four Windows 2008 R2 servers which all ran AD, DNS, DHCP and NPS.  These roles were being migrated to four Windows 2016 servers.  The servers are spread out geographically and are on different networks but are all part of a single AD domain.  All of the servers are Global Catalog servers.  This is not designed to be low-level guide with all the intricate details but more of an overview (with some useful commands thrown in).

Continue reading “Migrating Active Directory from 2008 R2 to 2016”

Posted on

Configure 802.1x certificate based authentication on Meraki wireless access points with Microsoft NPS authentication

Cisco-Meraki-8021x-Microsoft-NPS-Authentication-15

Problem:
I wanted to enable full network access to company users via the existing Cisco Meraki wireless access points. The problem is that these traditionally have only been used for guest Wi-Fi access and I need to be 100% certain that it will be secure.

Continue reading “Configure 802.1x certificate based authentication on Meraki wireless access points with Microsoft NPS authentication”