Welcome to Scribd!

0% found this document useful (0 votes)

128 views

Network Access Protection (NAP)

Uploaded by

Network Access Protection (NAP) aims to detect and remediate unhealthy clients on a network. It uses a System Health Agent (SHA) on clients to report health status to a System Health Validator (SHV) that enforces compliance. Enforcement can occur through IPSec health checks, 802.1x authentication on switches/APs, or DHCP compliance. NAP components include the SHA, SHV, remediation servers, and RADIUS or Active Directory servers.

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as DOC, PDF, TXT or read online from Scribd

Network Access Protection (NAP)

Uploaded by

Rixwan Ahmed Khan

0% found this document useful (0 votes)

128 views15 pages

Original Description:

Configuring NAP

Original Title

5. Network Access Protection (NAP)

Copyright

Available Formats

DOC, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as DOC, PDF, TXT or read online from Scribd

Download as doc, pdf, or txt

0% found this document useful (0 votes)

128 views15 pages

Network Access Protection (NAP)

Uploaded by

Rixwan Ahmed Khan

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as DOC, PDF, TXT or read online from Scribd

Download as doc, pdf, or txt

Jump to Page

You are on page 1of 15

Search inside document

NETWORK ACCESS PROTECTION

Need for NAP NAP Component Enforcement Types

NEED FOR NAP: A single vulnerable host poses threat to entire network Especially laptop, guests or home Need to detect + Remediate unhealthy clients Little or No user action Restricted network until resolve Full network IP Healthy

NAP COMPONENTS: System Health Agent (SHA) NAP Client (security center) Report health stat Vista, XP-SP3 System Health Validator (SHV) NAP on W2K8

Possibly Combined With Radius Remediation Servers Antivirus updates WSUS RADIUS (Remote Access Dial-In User Server) AAA (Authentication, Authorization, Accounting) CA (Certificate Authority) Must be W2K8 Vender SHA/SHV Pair

ENFORCMENT TYPES: IPSec Health Check Health Cert Can be IP Address or Port-Specific W2K8 CA required 802.1x Switch/ AP Constant Monitoring ACL VLAN VPN W2K8 Packet Filter DHCP Compliant clients: Full access IP configuration Non-Compliant: Single Host Routes

CONFIGURING NAP:

Administrative templates Windows Components Security Center 'Turn On security center

Windows 7 Client > run > ipconfig /all 'show no default gateway' Windows 7 Client > run > route print 'no default route' Windows 7 Client > run > ping 192.168.1.39 Windows 7 Client > run > netsh nap client show state

Windows 7 Client > run > ipconfig /release Windows 7 Client > run > ipconfig /renew Windows 7 Client > run > route printr 'default gateway show if its healthy client' Windows 7 Client > web > google.com 'if its healthy client'

Demystifying 802.1x PDF
Document9 pages
Demystifying 802.1x PDF
oic-ad-ag
No ratings yet
Cisco ISE Design and Architecture
Document69 pages
Cisco ISE Design and Architecture
Mike Van Kleef
100% (1)
Network Access Protection
Document16 pages
Network Access Protection
Nourmina Nabil
No ratings yet
Session 08
Document8 pages
Session 08
bouzid.salim47
No ratings yet
802.1x + LLADP + Radius
Document30 pages
802.1x + LLADP + Radius
Hermawan Kemis
No ratings yet
Implementing 8021x Authentication
Document30 pages
Implementing 8021x Authentication
hari525
No ratings yet
Introducing 802.1x: Implement Wireless Scalability
Document44 pages
Introducing 802.1x: Implement Wireless Scalability
rajkumarlodh
No ratings yet
Cisco ACS Eduroam
Document43 pages
Cisco ACS Eduroam
Nalin Singh
No ratings yet
Cisco NAC
Document4 pages
Cisco NAC
Daniel Daniel
No ratings yet
Cisco Virutal Wireless LAN Controller Deployment Guide
Document34 pages
Cisco Virutal Wireless LAN Controller Deployment Guide
twin_hn
No ratings yet
AAA Servers
Document25 pages
AAA Servers
Kalyan Sannedhi
No ratings yet
CCNA 200-301 Chapter 29 Building A Wireless LAN
Document26 pages
CCNA 200-301 Chapter 29 Building A Wireless LAN
kmjanjua19
No ratings yet
B Consolidated 152ex 2960-X CG Chapter 0101110
Document26 pages
B Consolidated 152ex 2960-X CG Chapter 0101110
Hoàng Minh
No ratings yet
Presented By: Ritu Choudhary B.Tech (C.S) 3 Yr Roll No.:41
Document25 pages
Presented By: Ritu Choudhary B.Tech (C.S) 3 Yr Roll No.:41
rituchikara
No ratings yet
WPA Configuration Overview: Registered Customers Only
Document10 pages
WPA Configuration Overview: Registered Customers Only
Erick Camilo
No ratings yet
802.1x Port and MAC Base Function
Document17 pages
802.1x Port and MAC Base Function
Informática Bezmiliana
No ratings yet
CH 5 Network
Document85 pages
CH 5 Network
jawad.lajo
No ratings yet
MBSS - HP Router
Document48 pages
MBSS - HP Router
Rohit Mishra
No ratings yet
Checkpoint Firewall Administration Training Part2
Document29 pages
Checkpoint Firewall Administration Training Part2
ajay1989s
No ratings yet
Authentication Proxy Authentication Outbound No Cisco IOS Firewall or NAT Configuration
Document7 pages
Authentication Proxy Authentication Outbound No Cisco IOS Firewall or NAT Configuration
Andika Pajri
No ratings yet
Configuring Cisco Wlan Clients: Wireless Lans
Document29 pages
Configuring Cisco Wlan Clients: Wireless Lans
rajkumarlodh
No ratings yet
Catalyst 3560 Software Con Guration Guide, Release 12.2 (52) SE
Document64 pages
Catalyst 3560 Software Con Guration Guide, Release 12.2 (52) SE
golge_man
No ratings yet
Demystifying mentalities
Document9 pages
Demystifying mentalities
krylov
No ratings yet
2 Nac
Document19 pages
2 Nac
hillaryaheebwa3
No ratings yet
IEEE 802.1x Multi Domain Authentication On Cisco Catalyst Layer 3 Fixed Configuration Switches Configuration Example
Document18 pages
IEEE 802.1x Multi Domain Authentication On Cisco Catalyst Layer 3 Fixed Configuration Switches Configuration Example
Marco Pereira
No ratings yet
ISE Troubleshoot
Document38 pages
ISE Troubleshoot
Lu Blue
No ratings yet
Network Admission Control Software Configuration Guide: © 2005 Cisco Systems, Inc. All Rights Reserved
Document88 pages
Network Admission Control Software Configuration Guide: © 2005 Cisco Systems, Inc. All Rights Reserved
karthong4057
No ratings yet
Deploying Wired 802.1X
Document120 pages
Deploying Wired 802.1X
chico_xtr
No ratings yet
ARM Based SoC Verification - v1
Document19 pages
ARM Based SoC Verification - v1
Balaramkishore Gangireddy
No ratings yet
CH 5 Network
Document73 pages
CH 5 Network
jawad.lajo
No ratings yet
V11-X Installation Prerequisite Check List Summary - AAI
Document11 pages
V11-X Installation Prerequisite Check List Summary - AAI
Vinay M Sudhakar
No ratings yet
Slide Cisco UWN - Minhbl
Document35 pages
Slide Cisco UWN - Minhbl
Khanh Tran
No ratings yet
EAP Authentication With RADIUS Server
Document13 pages
EAP Authentication With RADIUS Server
lanceth
No ratings yet
Mayank Sachdeva: Wits Opc Srver
Document5 pages
Mayank Sachdeva: Wits Opc Srver
Anand Raj
No ratings yet
Introduction To SAS
Document23 pages
Introduction To SAS
omarnoor3020
No ratings yet
CGX Access POC Plan and Summary
Document5 pages
CGX Access POC Plan and Summary
lucas
No ratings yet
MatrikonOPC Server For IEC 61850 Datasheet
Document2 pages
MatrikonOPC Server For IEC 61850 Datasheet
engacosta
No ratings yet
ProCurve Network Access Controller 800 English
Document8 pages
ProCurve Network Access Controller 800 English
Ian Jared
No ratings yet
Identity Services Engine (ISE)
Document33 pages
Identity Services Engine (ISE)
Vk V
No ratings yet
Captive Web Portal Guide ExtremeCloudIQ
Document18 pages
Captive Web Portal Guide ExtremeCloudIQ
dfoxla
No ratings yet
Configuring Wlans: Wireless Lans
Document36 pages
Configuring Wlans: Wireless Lans
rajkumarlodh
No ratings yet
Hyper-V Security by Kevin Lim
Document44 pages
Hyper-V Security by Kevin Lim
Microsoft TechDays APAC
No ratings yet
Server 2008 NAP Network Access Protection
Document32 pages
Server 2008 NAP Network Access Protection
Paul
No ratings yet
Quick Start Guide: 8-Port Value-Line Console Server QS Guide
Document12 pages
Quick Start Guide: 8-Port Value-Line Console Server QS Guide
albraa80
No ratings yet
13 AAA-Dot1x
Document23 pages
13 AAA-Dot1x
anhtuan29
No ratings yet
Security: CNIT 221 1 Ver.2
Document32 pages
Security: CNIT 221 1 Ver.2
Cark86
No ratings yet
Honeywell
Document1 page
Honeywell
jdietz4
No ratings yet
ISE Slides PDF
Document134 pages
ISE Slides PDF
Pablo Piriwenho Godoy
0% (1)
68-3601-50_B_VCA_VCP_SUG
Document10 pages
68-3601-50_B_VCA_VCP_SUG
ravicharan2552
No ratings yet
Digest Access Authentication: Internet Security For Embedded Devices
Document16 pages
Digest Access Authentication: Internet Security For Embedded Devices
stojancolic
No ratings yet
Increasing Security For Network Communication
Document26 pages
Increasing Security For Network Communication
Alecs Denis
No ratings yet
Configuring Ipsec
Document22 pages
Configuring Ipsec
alex ernyey
No ratings yet
FortiNAC Local RADIUS Server v94
Document16 pages
FortiNAC Local RADIUS Server v94
elmer tapia
No ratings yet
Lec 9 WiFi Security
Document29 pages
Lec 9 WiFi Security
Bilal Rasool
No ratings yet
Omniaccess 4504Xm, Omniaccess 4604, Omniaccess 4704: W Ireless Lan Switches
Document4 pages
Omniaccess 4504Xm, Omniaccess 4604, Omniaccess 4704: W Ireless Lan Switches
gaulirb
No ratings yet
Designing Hyper-V Solutions
From Everand
Designing Hyper-V Solutions
Saurabh Grover
No ratings yet
FreeRADIUS Beginner's Guide: Master authentication, authorization, and accessing your network resources using FreeRADIUS
From Everand
FreeRADIUS Beginner's Guide: Master authentication, authorization, and accessing your network resources using FreeRADIUS
Dirk van der Walt
Rating: 3 out of 5 stars
3/5 (1)
Configuration and Evaluation of Some Microsoft and Linux Proxy Servers, Security, Intrusion Detection, AntiVirus and AntiSpam Tools
From Everand
Configuration and Evaluation of Some Microsoft and Linux Proxy Servers, Security, Intrusion Detection, AntiVirus and AntiSpam Tools
Dr. Hidaia Mahmood Alassouli
No ratings yet
Configuration of Microsoft ISA Proxy Server and Linux Squid Proxy Server
From Everand
Configuration of Microsoft ISA Proxy Server and Linux Squid Proxy Server
Dr. Hidaia Mahmood Alassouli
No ratings yet
Windows Server 2012 Hyper-V: Deploying Hyper-V Enterprise Server Virtualization Platform
From Everand
Windows Server 2012 Hyper-V: Deploying Hyper-V Enterprise Server Virtualization Platform
Zahir Hussain Shah
No ratings yet
Active Directory Light Directory Service (ADLDS)
Document34 pages
Active Directory Light Directory Service (ADLDS)
Rixwan Ahmed Khan
No ratings yet
DHCP
Document19 pages
DHCP
Rixwan Ahmed Khan
No ratings yet
Mega Guide CCNA 640-802
Document182 pages
Mega Guide CCNA 640-802
wolf1313
No ratings yet
(640-802) CCNA Exam Topics - The Cisco Learning Network
Document11 pages
(640-802) CCNA Exam Topics - The Cisco Learning Network
Asim Mazin
No ratings yet
Siaemic - ALFOplus - Leaflet - October 2021
Document2 pages
Siaemic - ALFOplus - Leaflet - October 2021
Bilal Warraich
No ratings yet
Sourcefire Next-Generation IPS (NGIPS) White Paper
Document10 pages
Sourcefire Next-Generation IPS (NGIPS) White Paper
gfb
No ratings yet
SNMPV 3 and NNMi
Document30 pages
SNMPV 3 and NNMi
roshan Naik
No ratings yet
CX310 Switch Module V100R001C00 User Guide 21 PDF
Document103 pages
CX310 Switch Module V100R001C00 User Guide 21 PDF
Zafar Iqbal
No ratings yet
Basic RAN Architecture and O&M
Document33 pages
Basic RAN Architecture and O&M
sonchoy17
No ratings yet
20PKSA001-LNT-SPV-I-DWG-1300 - R6 Solar PV Plant SCADA Architecture Drawing - A
Document2 pages
20PKSA001-LNT-SPV-I-DWG-1300 - R6 Solar PV Plant SCADA Architecture Drawing - A
Samkonaya Bitom
No ratings yet
Wesite Report
Document122 pages
Wesite Report
Vivek Dhoopar
No ratings yet
Onefs Upgrade Failures: Emc Isilon Customer Troubleshooting Guide
Document22 pages
Onefs Upgrade Failures: Emc Isilon Customer Troubleshooting Guide
arungarg_it
No ratings yet
Differences Between M2PA and M2UA
Document2 pages
Differences Between M2PA and M2UA
mnyama_mnyama
No ratings yet
Openrb Logic Machine LM5 DR Manual 11.2017
Document252 pages
Openrb Logic Machine LM5 DR Manual 11.2017
Angelo Dottore
No ratings yet
SAGEM FAST 3202 (Livebox) ENGLISH
Document140 pages
SAGEM FAST 3202 (Livebox) ENGLISH
spam47spam47
No ratings yet
PracticeTest AZ 104
Document89 pages
PracticeTest AZ 104
himoshahid
No ratings yet
Alfa Awus036h Awus050nh Installing Drivers
Document6 pages
Alfa Awus036h Awus050nh Installing Drivers
Rubi Valdovinos
No ratings yet
Dell Inspiron 1427 - DELL - Wistron - FOOSE - AMD - 15 - UMA - RevSB
Document53 pages
Dell Inspiron 1427 - DELL - Wistron - FOOSE - AMD - 15 - UMA - RevSB
cemal
No ratings yet
Chapter Two: System Models
Document24 pages
Chapter Two: System Models
workineh fenta
No ratings yet
Palo Alto Networks - PA-5000 Series - Datasheet
Document2 pages
Palo Alto Networks - PA-5000 Series - Datasheet
abaheabahe
No ratings yet
WAGO Edge Devices: IT and OT in One Device
Document8 pages
WAGO Edge Devices: IT and OT in One Device
Abel Quianga
No ratings yet
Example Test Plan: Start Date End Date Network Build (Setup) Testing Date
Document12 pages
Example Test Plan: Start Date End Date Network Build (Setup) Testing Date
Vali Munteanu
No ratings yet
Amazon Web Services
Document9 pages
Amazon Web Services
lakshmi
100% (1)
My CCNA Reviewer
Document9 pages
My CCNA Reviewer
Kickers12
No ratings yet
BTS 61 0532 GL
Document39 pages
BTS 61 0532 GL
воробьёв антон
No ratings yet
STP60 - SHP75 - STPS60 SunSpec - Modbus TI en 15
Document62 pages
STP60 - SHP75 - STPS60 SunSpec - Modbus TI en 15
Augusto Casais
No ratings yet
Axel Ax395d (Vt100)
Document7 pages
Axel Ax395d (Vt100)
brent910
No ratings yet
GPD V3 Install Guide 071019
Document8 pages
GPD V3 Install Guide 071019
brahma.madhavi
No ratings yet
Storage Discovery
Document17 pages
Storage Discovery
Sachin
No ratings yet
Steps Set Up Computer Server
Document2 pages
Steps Set Up Computer Server
Kevin Kregel Campollo
No ratings yet
Siemens S7-200 Communication Settings
Document14 pages
Siemens S7-200 Communication Settings
www.otomasyonegitimi.com
No ratings yet
Isilon OneFS Simulator Install Guide
Document16 pages
Isilon OneFS Simulator Install Guide
Blanca Bautista Pérez
No ratings yet
LED-Status Access Points
Document18 pages
LED-Status Access Points
Tokkummaa Boonsaa
No ratings yet
Chap04 Review 1
Document3 pages
Chap04 Review 1
Rawle Ezra Sue-Ho
No ratings yet

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.

Network Access Protection (NAP)

Uploaded by

Copyright:

Available Formats

Network Access Protection (NAP)

Uploaded by

Document Information

Original Description:

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Network Access Protection (NAP)

Uploaded by

Copyright:

Available Formats

NETWORK ACCESS PROTECTION

Need for NAP NAP Component Enforcement Types

Administrative templates Windows Components Security Center 'Turn On security center

You might also like

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.