I've setup Windows Servers for single site access or for single user VPNs (work from home scenarios) but never for a dozen sites, each with about 6 to 15 computers. I'm picking up a client with this footprint. I need group policy features to allow for:
1) Users to log into any computer at any site.
2) Be able to run batch and powershell scripts.
3) Update Management
Other considerations:
A) The sites already have Cisco ASAs for site to site VPN, but we're not terribly familiar with Cisco products. (We have a fair amount of time to get the necessary training.)
B) It'd be nice for each site to have its own domain for eventually creating a SSO solution with Office 365.
C) We don't need an email server of any sort.
(It seems to me that there ought to be a cloud service that would accomplish this by now. I could use some help even with just the...