DirectAccess (based on Windows Server 2012 R2) has been setup for remote users to access internal network file shares, web sites and applications. Everything works great. Our users now can securely connect to the corporate network from any location without any type of traditional VPN.
However, we would like to have different remote access rights for the DirectAccess users. Let’s say, users (to be correct, it’s actually computers) in DirectAccess-Group1 will have access to Server1 files shares and DirectAcees-Group2 will have access to Server2 and WebServer1. How do we do this?
Thanks in advance.