Admin CliCours
…….
What Is NAP?
Enforces client health before allowing access to the network
Can allow access to remediation servers
Has various enforcement mechanisms
Controls network access for noncompliant computers
Does not block intruders or malicious users
Scenarios for Implementing NAP
Verifying the health of:
• Roaming laptops
• Desktop computers
• Visiting laptops
• Home computers used for remote access
Considerations for Designing NAP
You must determine:
Health requirements to be enforced
Limits to be placed on non-compliant computers
Remediation for non-compliant computers
NAP and Certificate Services
Certificate Services is:
• Used for IPSec enforcement to generate health certificates
• Contacted by an HRA
• Health certificates should have a short expiry of 24-48 hours
System Health Agents and Validators
System Health Validator (SHV):
• Is the server-side complement to an SHA
• Compares client health to required status
System Health Agent (SHA):
– Is present on clients
– Publishes health status
– Includes Windows SHA
– Can be obtained from third-parties
………
