Step 4: Configuring a Windows Security Health Validator on the RD Gateway Server

Applies To: Windows Server 2008 R2

When you configure a Windows Security Health Validator (WSHV), you are creating a client health policy that establishes the requirements for client computers that are allowed to connect to your network. When client computers attempt to connect to your network and their configuration does not match the WSHV, their network connection is blocked until the client computers meet the conditions of the WSHV.

To configure a Windows Security Health Validator on the RD Gateway server

1. Open the Network Policy Server snap-in console. To open Network Policy Server, click Start, point to Administrative Tools, and then click Network Policy Server.

2. In the console tree, click Network Access Protection.

3. In the details pane, under System Health Validators, click Configure System Health Validators.

4. In the details pane, under System Health Validators, click Windows Security Health Validator.

5. In the details pane, under Settings, click Settings.

6. In the details pane, right-click Default Configuration, and then click Properties.

7. On the Windows 7/Windows Vista page, clear every check box except for Automatic updating is enabled, Restrict access for clients that do not have all available security updates installed, and Windows Update.

8. Click OK to close the Windows Security Health Validator properties.

You have configured a Windows Security Health Validator on the RD Gateway server. Now you can proceed to Step 5: Creating NAP Policies on the RD Gateway Server.