locked
No enforcement design for NAP RRS feed

  • Question

  • Hello,

     

    I read something about the no enforcement design. I think this is going to be the best working solution for the situation I'm working on, because the end users wont notice anything of the whole NAP proces! 

     

    But i was wondering, is it possible that de administator gets a warning / warning message when a NAP client logs on to the network and is incompliant with the NAP policy.

    So in the end it's still less secure then with enforcement, but in this case the administrator would notice it in time.

     

    Thank you in advance, 

     

    n0rb1t

    Wednesday, May 26, 2010 9:26 AM

Answers

  • Hi,

    You are notified through events on the NPS server. The best way to track these events is to log to SQL and process the logs through a report structure. But, you can also simply view them manually.

    -Greg

    • Marked as answer by n0rb1t Thursday, May 27, 2010 6:49 AM
    Thursday, May 27, 2010 6:28 AM
  • Hi,

    Thanks for the post.

    As Greg said, you could track these events is to log to SQL and process the logs through a report structure.

    You could refer to the following article:

    Deploying SQL Server Logging with Windows Server 2003 Internet Authentication Service (IAS)

    http://technet.microsoft.com/en-us/library/cc776712(WS.10).aspx

    By the way, you could also refer to the following article to use VBScript to Query the Event Log. It's simple but no more powerful than the above method:

    http://www.computerperformance.co.uk/Logon/VBScript/VBScript_Windows_event_log.htm

    Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.

    Hope this helps.

    Miles

    • Marked as answer by Miles Zhang Friday, May 28, 2010 2:16 AM
    Thursday, May 27, 2010 6:57 AM

All replies