Hi all,
I've problem with setting up the DA w/NAP in demo lab. I'm going through the TestLab Guides, however haven't succeeded :(
I've theese computers instaled:
- DA-DC01 (with DC, CA, NPS and HRA roles)
- DA-DA01 (with DA feature)
- DA-IIS01 (with IIS role, serves as NLS)
- DA-APP01 (with CA role, serves as subordinate CA generating HRA certificates)
- DA-W7 (Windows 7 Ent client)
My problem is that DA works quite cute except the denying access for non-complaint computers. I've set the Health policy to require WFW and WU. If the client is in Intranet LAN and I disable WU, then autoremediation occures and WU is enabled again. If I
do the same on Internet WAN, the remediation process does not start and the client remains compliant (napstat command shows "Full access" and the HRA certificate is not removed) - and it can contact the internal server, indeed.
I've tried to find the problem with Troubleshooting Guide (both TestLab and that one in DA Design Guide) - no luck.
What steps should I do, what kind of settings should I check?
Thanks!
R.*