Configuring NAP based quarantine

This topic describes how to configure Microsoft Forefront Threat Management Gateway, Network Policy Server (NPS), and VPN clients to use Network Access Protection (NAP) enforcement. Using NAP, you can create and enforce health requirement policies that define the required software and system configurations for computers that connect to your network. NAP enforces health requirements by inspecting and assessing the health of client computers, limiting network access when client computers are deemed noncompliant, and remediating noncompliant client computers for unlimited network access. For an overview of NAP, see "Network Access Protection" at the Microsoft TechNet Web site.

Configuring NAP for Forefront TMG consists of the following tasks:

Configuring VPN remote access connections to use NAP based quarantine

Configuring NAP on the Network Policy Server (NPS)

Enabling NAP on VPN clients