I am working with a customer to deploy DirectAccess 2012 and am running into IPSec issues. The customer has a working UAG DirectAccess configuration using the same PKI as DirectAccess 2012. On both the client and the DA 2012 server I am seeing Event ID 4653 errors every time the client tries to establish a main mode tunnel. I have validated the DA Server configuration. IP-HTTPS cert is a 3rd party cert, the certificate defined for DirectAccess is the root certificate of the local Certificate Authority. Basically, everything is configured the same as the UAG server and using the same certificates but the connection is never being established due to the 4653 errors.
Any ideas what could be causing this?
Steve Angell - IAM Practice Director http://www.InfraScience.com)
