You will notice
that this chapter has significantly fewer hands-on exercises than previous chapters.
This is simply because creating a full-blown NAP environment means you have to make
configuration settings that are far beyond the scope of this book. However, one of the
NAP enforcement methods we can use to demonstrate the NAP concept??”because of its
relative simplicity??”is NAP using DHCP enforcement. In this multipart exercise, we set
up a simple NAP architecture using DHCP enforcement to control network access for a
NAP-enabled client.
Figure 8-3. Statement of Health communication path
CLIENT
SHA
NAP ES
NAP AGENT
SERVER
SHV
NAP ES
NAP Administration
265 Chapter 8: Network Policy and Access Services
Requirements
The minimal types of systems you will need for this exercise are
?–? Domain controller
?– Windows Server 2008 server acting as network policy server
?– DCHP Server (either on the domain controller or NPS server)
?– DNS Server (required for Active Directory anyway)
?–? Client computer running Windows Vista
Preparation
For this exercise, set up a lab with two servers running Windows Server 2008 and one
workstation running Windows Vista. The domain is called LABDOM.LOCAL and the
systems are organized as follows:
System Setup Requirements
WIN2K8DC Windows Server 2008
Domain Controller, Primary DNS Server
IP Address: 192.168.100.25
WIN2K8NPS Windows Server 2008
DHCP Server, Network Policy Server
IP Address: 192.
Pages:
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315