Académique Documents
Professionnel Documents
Culture Documents
Module 8
Module Overview
Installing and Configuring a Network Policy Server
Configuring RADIUS Clients and Servers
NPS Authentication Methods
Monitoring and Troubleshooting a Network Policy Server
Implementing Network Access Protection
functions:
NAP policy server. NPS evaluates statements of health sent by NAPcapable client computers that attempt to connect to the network
Accounting commands
Windows PowerShell
Wireless access
point
(RADIUS
client)
Client
computer
RADIUS server
Framed Protocol
Service Type
Tunnel Type
Day and Time restrictions
Settings, such as:
Authentication
Accounting
Attribute Manipulation
Description
Local authentication takes place against
MS-CHAP
CHAP
PAP
Unauthenticated
access
Description
CA certificate in the Trusted Root
Certification
Authorities certificate store for the Local
Computer and Current User
Client computer certificate in the certificate
store of the client
Server certificate in the certificate store of
the NPS server
User certificate on a smart card
smart card
This method is the process of logging NPS events in the System Event log
system partition.
Common request failure events consist of requests that NPS rejects or discards;
both failure and success events are recorded
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\
SecurityProviders\SCHANNEL\EventLogging
What Is NAP?
What NAP can and cannot do:
NAP can
NAP cannot
NAP Architecture
VPN
server
Active
Director
y
IEEE
802.1X
devices
Intranet
Intern
et
Perimete
r
network
Remediatio
n servers
DHCP
server
Health
Registratio
n Authority
Restricte
d
network
NAP
health
policy
server
NAP client
with limited
access
the client
A Network Policy Server is required to create and enforce
policies
SHVs are required to determine what will be evaluated on
the client
System health policies are required to determine client
compliance or noncompliance
Certificates are required to validate computer identities for
PEAP authentication
Remediation networks can provide a way for clients to
become compliant and gain access to the network
health
NPS tells the DHCP server to provide full access to
compliant computers, and to restrict access to
noncompliant computers
Instructor-Led
Courses
20411C: Administering
Books
Exams &
Certifications
Exam 70-411: Administering