Planning and Design Considerations

When deploying 802.1X enforcement, you must consider the following in your planning:

  • Security group for NAP exemptions

  • 802.1X authentication methods

  • Type of 802.1X enforcement

  • 802.1X access points

  • NAP clients

Security Group for NAP Exemptions

To exempt computers from 802.1X enforcement by preventing NAP evaluation at the NAP health policy server, create a security group whose members contain the computer accounts of exempted computers. On the NAP health policy server, create a network policy that grants wireless or wired access and uses the Windows Groups condition set to the security group for the exempted computers but does not use the Health Policy condition.

Because the connection request policy for wired or wireless ...

Get Windows Server® 2008 Networking and Network Access Protection (NAP) now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.