Network Access Protection (NAP) is a platform for Windows Server 2008, Windows Vista, and Windows XP Service Pack 3, that controls access to network resources based on a client computer’s identity and compliance with corporate governance policy. NAP allows network administrators to define granular levels of network access based on who a client is, the groups to which the client belongs, and the degree to which that client is compliant with corporate governance policy. If a client is not compliant, NAP provides a mechanism to automatically bring the client back into compliance and then dynamically increase its level of network access. Internet Protocol security (IPsec) is a set of Internet Engineering Task Force (IETF) standards that provides cryptographic protection for IP-based traffic.
This white paper provides an overview of the NAP platform and IPsec and how IPsec enforcement in the NAP platform works to provide policy compliance enforcement for IPsec-protected communication.
Note The NAP platform is not the same as Network Access Quarantine Control, which is a capability provided with Windows Server 2003 to provide additional protection for remote access (dial-up and virtual private network [VPN]) connections. For more information, see Network Access Quarantine Control in Windows Server 2003.