O'Reilly logo

Windows Server® 2008 Administrator’s Companion by Charlie Russel and Sharon Crawford

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

The Politics of Deployment

When deploying your first test of Network Access Protection, don’t begin by enforcement as your first setting. Instead, change default policies in the NAP enforcement to merely report the health or lack of health of the system. Restricting access shouldn’t be the goal in your first deployments. Instead, focus on compliance with your policy.

When you have a noncompliant computer, set policy to block access of that system to your network. The noncompliance message explains to the end user that he is not "healthy" enough to connect to the network and allows him to try again. Figure 24-12 shows the notification of noncompliance; Figure 24-13 shows that a client is compliant.

Figure 24-12. Notification of noncompliance on the ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required