Example of using the new NPS templates feature in Windows Server 2008 R2

In a previous NAP blog entry, we described the new NPS templates feature in Windows Server 2008 R2. In this blog entry, we show an example of using a template for a RADIUS shared secret. Templates for RADIUS shared secrets allow users to specify a shared secret that can be reused when configuring RADIUS clients and…

1

NPS templates in Windows Server 2008 R2

NPS templates, the flagship feature of NPS in Windows Server 2008 R2, provides a huge reduction in cost of ownership and deployment for all NPS environments. NPS templates separate common RADIUS configuration elements such as RADIUS shared secrets and RADIUS clients from the configuration running on the server. When referenced, the NPS setting inherits the…

1

Changes to the NAP user experience in Windows 7

Windows 7 and Windows Server 2008 R2 are now available as public betas. In Windows 7, the NAP client user interface (UI) has been integrated into the Windows Action Center (previously known as the Windows Security Center). For example, Network Access Protection notifications appear in the list of messages when you click the Action Center…

1

Network Access Protection Deployment Guide is live!

Greetings NAP fans! The Network Access Protection Deployment Guide, authored by our very own technical writer and NAP Forum hero Greg Lindsay, is now live! http://technet.microsoft.com/en-us/library/dd314175.aspx   The NAP Deployment Guide provides detailed guidance for deploying a specific NAP design that has been determined through your use of the Network Access Protection Design Guide. The NAP Deployment…

1

"How Windows Update Client and NAP Client View Important Updates" post

In a previous blog entry, I talked about the very cool blog written by the Microsoft Enterprise Networking Team in Customer Service and Support (CSS). Louis Hardy, a Senior Support Escalation Engineer and member of a virtual team of CSS engineers that specialize in NAP, recently published the following post in the Enterprise Networking Team blog: How…

1

Selecting PEAP-TLS and other PEAP methods in Windows Vista and Windows Server 2008

Windows Vista and Windows Server 2008 support the Protected Extensible Authentication Protocol (PEAP) and the Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAP v2) and Transport Layer Security (TLS) authentication methods for PEAP. PEAP can be used in Windows Vista and Windows Server 2008 for remote access VPN connections, 802.1X-authenticated wired connections, and for wireless…

2

General NAP policy design considerations

Greetings, citizens of NAPville! Here is some information to take into account when designing your policies for NAP, adapted from a section in the upcoming Network Access Protection Design Guide and written by our own Greg Lindsay: Consider the following rules when configuring connection request policies and network policies in the Network Policy Server (NPS)…

1

Network policy design when using multiple system health validators

Here is a section from the upcoming Network Access Protection Design Guide on how to design network policies when you use multiple system health validators (SHVs), written by our own Greg Lindsay: If you have deployed multiple SHVs, you can configure network policies to match clients that are compliant with some but not all health…

0

WinCAT blog post on NAP and 802.1X Enforcement

Check out the Windows Server Customer Advisory Team (WinCAT) post Network Access Protection Using 802.1x VLAN’s or Port ACLs – Which is right for you? Our very own Pat Fetty, whom many of you have seen presenting NAP talks at industry conferences, discusses the two ways that you can configure IEEE 802.1X-based switches and wireless…

0