Question : Does Windows 7 built-in connectivity provide a comparable level of security to the existing VPN setup?

Currently use XP PRO L2TP/IPSec (machine and user certificates) for our VPN connectivity in conjunction with our ISA 2006 server, which has worked great to date. We’re now planning a migration to Windows 7 systems and looking at the built-in functionality. Does Windows 7 built-in connectivity provide a comparable level of security to the existing VPN setup? If so, are there any best practices or easier methods of deployment? (Our infrastructure is 2003 servers/active directory, and a couple of 2008 servers.)

Answer : Does Windows 7 built-in connectivity provide a comparable level of security to the existing VPN setup?

L2TP/IPSec is still available with W7. However, W7 allows in addition to use pure IPSec with IKEv2 (only) - I don't know if your ISA server supports that. Ideally you need to do any change (for L2TP/IPSec).