Overview

Introduction

TheInstalling and Configuring VPN Reconnect module provides you with the instruction and server hardware to develop your hands-on skills in the defined topics. This module includes the following exercises:

  • Preparing System Requirements for VPN Reconnect
  • Configuring a Routing and Remote Access Server and Network Policy Server
  • Configuring a Windows VPN Client

Lab time: It will take approximately 1 hour and 15 minutes to complete this lab.

Exam Objectives

The following exam objectives are covered in this lab:

  • Installing and Configuring VPN Reconnect

Exercise 1 - Prepare System Requirements for VPN Reconnect

Windows Server 2016 supports the VPN Reconnect feature through the Routing and Remote Access Service (RRAS). One of the protocols supported by the RRAS is the Internet Key Exchange v2 (IKEv2), which has the capability to restore a lost VPN connection through a feature called VPN Reconnect.

VPN Reconnect enables a Windows client, like a portable computer or a mobile device, to seamlessly reconnect to a VPN server if it temporarily loses connectivity. This can happen if a client computer moves from one network access point to another, or if it changes its physical location; for instance, by going from a meeting room that uses a wireless network to another area in the office that uses a wired network connection.

VPN Reconnect requires the RADIUS. The Network Policy Server (NPS) is Microsoft’s implementation of the Remote Authentication and Dial-in User Service (RADIUS), which can centralize the authentication, authorization, and accounting of VPN dial-in users.

The NPS is useful in networks where more than one VPN server is deployed, and the system administrator would like to have a dedicated server responsible for processing the authentication of VPN dial-in users. The NPS can enforce strict user policies by using authorization where users must meet criteria before being allowed access to VPN services. Similarly, the NPS can be used for accounting purposes as it can record the number of minutes that a user spends during their VPN connection.

In this exercise, you will first set up the system requirements to support VPN Reconnect.

Exercise 2 - Configure the Routing and Remote Access Server and the Network Policy Server

In the previous exercise, you prepared the system requirements to support the VPN Reconnect feature in Windows Server 2016. The tasks performed earlier were required for the successful implementation of VPN Reconnect. These tasks were as follows: installing Internet Information Services; installing and configuring Active Directory Certificate Web Enrollment Services; creating a customized certificate template, and requesting a customized certificate for the server that will be designated as the VPN server.

In the next activity, you will install and initialize Routing and Remote Access. Then you will configure a network access policy in the Network Policy Server.

Exercise 3 - Configure Windows VPN Client

Every Windows workstation has the capability to dial-in to a VPN server using its native VPN client software.

In the previous exercise, you installed and configured VPN services on Windows Server 2016. To validate the VPN settings that were set up on the server, you will now create a VPN client connection using Windows 10.

Comprehensive Learning

See the full benefits of our immersive learning experience with interactive courses and guided career paths.