locked
Setting up L2TP/IPSec VPN through RRAS -- is using NAP required? RRS feed

  • Question

  • Hi all,

    Just like the subject post -- I currently have a SSTP VPN hosted on my RRAS server, and I assigned access directly through Active Directory and allowing remote connections rather than delegating to NAP and it works just fine.

    I am about to enable a L2TP/IPSec VPN on the same server to allow Mac clients to VPN as well -- as a result, I was wondering if I have to utilize NAP for a L2TP/IPSec VPN, or if I can continue assigning access privileges per user.

    Thanks,
    Tom

    Tuesday, February 28, 2017 6:28 PM

All replies

  • Hi Tom,

    >> I was wondering if I have to utilize NAP for a L2TP/IPSec VPN, or if I can continue assigning access privileges per user

    It is not necessary to deploy NAP.

    If client is not matched health policy from NAP, client will not have permission to access internal network.

    Here is information about NAP for your reference:

    NAP Enforcement Methods

    https://technet.microsoft.com/en-us/library/cc753389(v=ws.10).aspx

    And MAC OS client is not supported by NAP.

    Best Regards

    John


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Wednesday, March 1, 2017 9:16 AM
  • Hi Tom,

    Just want to confirm the current situations.

    Please feel free to let us know if you need further assistance.

    Best Regards

    John


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, March 27, 2017 1:59 AM