Exploring Network Access Protection

Windows Server 2008 includes Network Access Protection (NAP) as part of the Network Policy and Access Services server role. NAP can inspect each client attempting to connect to a network and determine if it meets certain requirements before allowing it to connect. Unhealthy clients are isolated or denied network access, whereas healthy clients are granted access.

NAP includes four primary capabilities that work together to ensure that only healthy clients connect. They’re as follows:

  • Health-state validation
  • Limited access for unhealthy clients
  • Automatic remediation for unhealthy clients
  • Periodic compliance checking for healthy clients

An administrator defines characteristics of a healthy client, such as ...

Get Microsoft® Windows® Security: Essentials now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.