Skip to main content

Internet Protocol Security Enforcement in the Network Access Protection Platform

Published: July 27, 2005 | Updated: February 4, 2008



    467 KB
    Microsoft Word file
    Updated: Feb 4, 2008

Network Access Protection (NAP) is a platform for Windows Server 2008, Windows Vista, and Windows XP Service Pack 3, that controls access to network resources based on a client computer’s identity and compliance with corporate governance policy. NAP allows network administrators to define granular levels of network access based on who a client is, the groups to which the client belongs, and the degree to which that client is compliant with corporate governance policy. If a client is not compliant, NAP provides a mechanism to automatically bring the client back into compliance and then dynamically increase its level of network access. Internet Protocol security (IPsec) is a set of Internet Engineering Task Force (IETF) standards that provides cryptographic protection for IP-based traffic.

This white paper provides an overview of the NAP platform and IPsec and how IPsec enforcement in the NAP platform works to provide policy compliance enforcement for IPsec-protected communication.

Note The NAP platform is not the same as Network Access Quarantine Control, which is a capability provided with Windows Server 2003 to provide additional protection for remote access (dial-up and virtual private network [VPN]) connections. For more information, see Network Access Quarantine Control in Windows Server 2003.

Included in This Document

  • Network Access Protection Overview

  • IPsec Overview

  • IPsec Enforcement in NAP

For More Information