locked
Network Access Protection RRS feed

  • Question

  • Describe a scenario where an organization will need to use NAP? What are the benefits of using NAP?
    Thursday, February 11, 2016 8:43 PM

Answers

  • A company that has sensitive information and strict security policies might want to use NAP to make sure all connected clients have an up to date antivirus and windows patches to prevent viruses and malware getting on the network from un-patched and and non-updated machines.

    Example:

    Imagine a sales guy goes on a trip and for some reason needs to temporarily disable his antivirus for some various reason, but he forgets to enable it again. After that, he picks up a virus. When he gets back to the office NAP will force him to turn his AV back on prior to connecting to the network. When he turns AV on it alerts him that he has a virus and in turn this protects the organization from getting this nasty computer virus.

    http://searchnetworking.techtarget.com/definition/network-access-protection-NAP



    Please remember to select Mark as Answer if someone provides the answer or mark as helpful if the response helps to lead you in the right direction.

    • Marked as answer by Anton12341234 Friday, February 12, 2016 3:17 PM
    Thursday, February 11, 2016 9:05 PM
  • Thank you for the reply. Yes I found this helpful. But I cannot think of a  scenario where an organization will need to use NAP. Can you give me a scenario? Thanks!

    Hi Anton,

    NAP has four enforcement methods:

    1.NAP enforcement for IPsec;

    2. NAP enforcement for 802.1x;

    3. NAP enforcement for DHCP;

    4. NAP enforcement for TMG;

    5. NAP enforcement for VPN.

    You may check the following link for detailed information:

    https://technet.microsoft.com/en-us/library/cc753389(v=ws.10).aspx

    For example: NAP enforcement for VPN, if we deploy NAP for VPN connection, then when we connect to VPN, VPN server will ask for NAP server for authenication. Only clients meet the policy configured in NPS can connect to VPN.

    Best Regards,

    Anne


    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact tnmff@microsoft.com.

    • Marked as answer by Anton12341234 Friday, February 12, 2016 3:42 PM
    Friday, February 12, 2016 7:09 AM

All replies

  • You can read about it over here.

    https://msdn.microsoft.com/en-us/library/dd125390%28v=ws.10%29.aspx?f=255&MSPPError=-2147217396

     

     

     


    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows]

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

    Thursday, February 11, 2016 8:45 PM
  • Thank you for the reply. Yes I found this helpful. But I cannot think of a  scenario where an organization will need to use NAP. Can you give me a scenario? Thanks!
    Thursday, February 11, 2016 8:50 PM
  • Some ideas here.

    http://blogs.technet.com/b/nap/

    http://blogs.technet.com/b/wincat/archive/2008/08/19/network-access-protection-using-802-1x-vlan-s-or-port-acls-which-is-right-for-you.aspx

    https://technet.microsoft.com/en-us/library/cc754378(v=ws.10).aspx

     

     

     


    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows]

    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

    Thursday, February 11, 2016 8:55 PM
  • A company that has sensitive information and strict security policies might want to use NAP to make sure all connected clients have an up to date antivirus and windows patches to prevent viruses and malware getting on the network from un-patched and and non-updated machines.

    Example:

    Imagine a sales guy goes on a trip and for some reason needs to temporarily disable his antivirus for some various reason, but he forgets to enable it again. After that, he picks up a virus. When he gets back to the office NAP will force him to turn his AV back on prior to connecting to the network. When he turns AV on it alerts him that he has a virus and in turn this protects the organization from getting this nasty computer virus.

    http://searchnetworking.techtarget.com/definition/network-access-protection-NAP



    Please remember to select Mark as Answer if someone provides the answer or mark as helpful if the response helps to lead you in the right direction.

    • Marked as answer by Anton12341234 Friday, February 12, 2016 3:17 PM
    Thursday, February 11, 2016 9:05 PM
  • Thank you for the reply. Yes I found this helpful. But I cannot think of a  scenario where an organization will need to use NAP. Can you give me a scenario? Thanks!

    Hi Anton,

    NAP has four enforcement methods:

    1.NAP enforcement for IPsec;

    2. NAP enforcement for 802.1x;

    3. NAP enforcement for DHCP;

    4. NAP enforcement for TMG;

    5. NAP enforcement for VPN.

    You may check the following link for detailed information:

    https://technet.microsoft.com/en-us/library/cc753389(v=ws.10).aspx

    For example: NAP enforcement for VPN, if we deploy NAP for VPN connection, then when we connect to VPN, VPN server will ask for NAP server for authenication. Only clients meet the policy configured in NPS can connect to VPN.

    Best Regards,

    Anne


    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact tnmff@microsoft.com.

    • Marked as answer by Anton12341234 Friday, February 12, 2016 3:42 PM
    Friday, February 12, 2016 7:09 AM
  • Thank you
    Friday, February 12, 2016 3:42 PM