Changes

Configuring Windows Server 2008 NAP DHCP Enforcement

222 bytes added, 19:26, 8 September 2008
no edit summary
Network Access Protection (NAP) is a system designed to protect networks from clients which do not have a sufficient level of security configured. When NAP is implemented clients without the required level of security are denied access to the network and, typically, the user is diverted to web page informing them of the steps necessary to bring the client into compliance, and a ''remediation server'' where security updates may be obtained.
Dynamic Host Configuration Protocol (DHCP) can be combined with NAP to enforce network access policies every time a computer attempts to lease or renew an IP address from the DHCP server. This chapter of [[Windows Server 2008 Essentials]] will cover the steps necessary to integrate DHCP and NAP on Windows Server 2008.
If network client health is to be enforced for all IP addresses allocated by the DHCP server then no scopes need to be defined here. If, on the other hand, NAP enforcement is only required for certain IP address ranges, define the scopes here.
On the next screen enter specific machines and and users which are to be granted or denied access. the NAP Remediation Server settings page allows the addresses of Remediation Servers to be specified, where clients may obtain the necessary updates to reach NAP compliance. It is also possible to specify a web page URL which displays information to the user about how to bring their computers into compliance with the defined policy.When the appropriate information has been entered, click Finish to complete this phase of the configuration. == Configuring DHCP Server NAP Settings ==