Network Access Protection

Network Access Protection (NAP) is a feature in Windows Server 2008 that controls access to network resources based on a client computer’s identity and compliance with corporate governance policy. NAP allows network administrators to define granular levels of network access based on who a client is, the groups to which the client belongs, and the degree to which that client is compliant with corporate governance policy. If a client is not compliant, NAP provides a mechanism to automatically bring the client back into compliance and then dynamically increase its level of network access.

Featured Content

Network Policy and Access Services overview
Provides an overview of Network Policy and Access Services in Windows Server "8" Beta. Includes the specific role services of Network Policy Server (NPS), Health Registration Authority (HRA), Network Access Protection (NAP), and Host Credential Authorization Protocol (HCAP).
Test Lab Guide: Demonstrate NAP for Remote Access VPN
This prescriptive guide builds on two prerequisite test lab guides: Test Lab Guide: Base Configuration and Test Lab Guide: Demonstrate Remote Access VPNs.
Introduction to Network Access Protection
Read this white paper for an overview of NAP scenarios and components and a brief description of how NAP works for IPsec-protected communication, 802.1X authenticated connections, remote access VPN connections, and DHCP configuration.
Network Access Protection Design Guide
Read this for information about advantages, disadvantages, requirements, recommendations, and design considerations for deploying NAP for the Internet Protocol security (IPsec), 802.1X, virtual private network (VPN), and Dynamic Host Configuration Protocol (DHCP) enforcement methods.
Network Access Protection Policies in Windows Server 2008
Download only. Read this white paper for a description of the different settings of the Network Policy Server (NPS) service for NAP and how the different settings are related to create a customized health determination and enforcement solution.

Introductory Overviews

Network Access Protection Platform Architecture
Read this white paper for a detailed description of the components of the NAP architecture in Windows Server 2008, how it works, and how it allows third-party software vendors and system integrators to create complete solutions for system health validated network access.
Internet Protocol Security Enforcement in the Network Access Protection Platform
Read this white paper for a detailed description of how IPsec enforcement in the Network Access Protection platform works to provide system health validation and enforcement for IPsec-protected communication in Windows Server 2008.
Network Access Protection Platform Overview
Read the Cable Guy article for July 2005 for a comparison of NAP with Network Access Quarantine Control in Windows Server 2003.

Step-by-Step Guides

Step-by-Step Guide: Demonstrate DHCP NAP Enforcement in a Test Lab
Download only. Follow the instructions in this white paper to demonstrate DHCP enforcement.
Step-by-Step Guide: Demonstrate IPsec NAP Enforcement in a Test Lab
Download only. Follow the instructions in this white paper to demonstrate IPsec enforcement.
Step-by-Step Guide: Demonstrate 802.1X NAP Enforcement in a Test Lab
Download only. Follow the instructions in this white paper to demonstrate 802.1X enforcement.
Step-by-Step Guide: Demonstrate VPN NAP Enforcement in a Test Lab
Download only. Follow the instructions in this white paper to demonstrate VPN enforcement.
Network Access Protection Deployment Guide
OK, so it's not a step-by-step guide. But you can still read this for checklists and step-by-step procedures for deploying NAP health policy servers, NAP enforcement points, IPsec policies with NAP, NAP certification authorities, and NAP client settings.
Configuring the TS Gateway NAP Scenario
Follow these instructions to configure a Terminal Services (TS) Gateway server to use NAP health evaluation.

Troubleshooting Resources

NAP troubleshooting basics
Short guideline for troubleshooting basic problems with your NAP deployment.
Network Access Protection Troubleshooting Guide
Learn how to perform root-cause analysis of the components of a NAP infrastructure and identify and resolve problems quickly.
Troubleshooting NAP Enforcement
Learn how to troubleshoot the most common problems with NAP enforcement.
NAP Infrastructure
Learn how to troubleshoot the components of NAP infrastructure.

DirectAccess with NAP

DirectAccess with NAP Solution
This solution content provides overview technical information and guidance to deploy DirectAccess with NAP and enforce system health requirements before allowing intranet access.
Step by Step Guide: Demonstrate DirectAccess with NAP in a Test Lab
This guide includes instructions for setting up and demonstrating NAP enforcement for intranet access in the DirectAccess test lab.
Step by Step Guide: Troubleshoot DirectAccess with NAP in a Test Lab
This guide describes NAP troubleshooting tools, the results of the tools in the working DirectAccess with NAP test lab, and three NAP health validation troubleshooting scenarios.

Solution Accelerators

Microsoft Forefront Integration Kit for Network Access Protection
This Solution Accelerator kit describes how to use Forefront Client Security and NAP for defense-in-depth against malicious attacks and control over the security and health of networked computers.
Infrastructure Planning and Design
The "Selecting the Right NAP Architecture" Infrastructure Planning and Design (IPD) guide clarifies and streamlines the planning and design process for a NAP deployment.
Microsoft Assessment and Planning Toolkit Solution Accelerator
The Microsoft Assessment and Planning (MAP) Toolkit Solution Accelerator can help you assess your current network prior to a NAP deployment.

Interoperability Resources

Cisco and Microsoft Unveil Joint Architecture for NAC-NAP Interoperability
Read this press release for information about the joint architecture that will enable customers and partners to deploy interoperable Cisco Network Admission Control (NAC) and Microsoft NAP.
Cisco Network Admission Control and Microsoft Network Access Protection Interoperability Architecture
Download only. Read this white paper for additional details of the interoperability architecture that allows customers to deploy both Cisco NAC and Microsoft NAP.
Nortel and Microsoft Network Access Protection Integration Solution
Download only. Nortel and Microsoft have worked together to integrate the Nortel Secure Network Access (SNA) solution and Microsoft NAP.
Standardizing Network Access Control: TNC and Microsoft NAP to Interoperate
Download only. Read this white paper for information about how Trusted Computing Group Trusted Network Connect (TNC) and Microsoft NAP will interoperate.

Webcasts and Virtual Labs

Webcast: How Microsoft does IT: Managing Network Access Protection
Webcast: Introduction to Network Access Protection
Virtual lab: Network Access Protection with IPsec Enforcement

Microsoft Press Books

Windows Server 2008 Networking and Network Access Protection (NAP)
Read this book for detailed planning, deployment, and troubleshooting instructions for Windows Server 2008 networking technologies and the IPsec, 802.1X, VPN, and DHCP enforcement methods for NAP.
Windows Server 2008 Resource Kit
This suite of six books provides in-depth technical information for Windows Server 2008 and includes the Windows Server 2008 Networking and Network Access Protection (NAP) book.

Development Resources

NAP in the Windows SDK
Learn how to use the NAP APIs to create components that verify and correct a computer's health and include NAP health evaluation.

Partners

Network Access Protection Partners
Find out about the industry leaders who have announced their support for Microsoft NAP. To find out how to become a NAP partner, send an inquiry to asknap@microsoft.com with "partner program" in the subject line.

Top of page

Network Access Protection

Featured Content

Introductory Overviews

Step-by-Step Guides

Troubleshooting Resources

DirectAccess with NAP

Solution Accelerators

Interoperability Resources

Webcasts and Virtual Labs

Microsoft Press Books

Development Resources

Partners

Community

Frequently Asked Questions

Related Resources

Products

Resources

Solutions

Downloads

Evals

Tools

TechNet Support

Microsoft Support