Windows Server 2008 – Windows Server 2008 – Network Access Network Access Protection (NAP) Protection (NAP) Presented by Vu Nguyen Cao Son Presented by Vu Nguyen Cao Son EPG Technical Specialist EPG Technical Specialist [email protected][email protected]www.CaoSonBlog.com www.CaoSonBlog.com
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Windows Server 2008 – Windows Server 2008 – Network Access Protection Network Access Protection (NAP)(NAP)
Windows Server 2008 – Windows Server 2008 – Network Access Protection Network Access Protection (NAP)(NAP)
Presented by Vu Nguyen Cao SonPresented by Vu Nguyen Cao SonEPG Technical SpecialistEPG Technical [email protected]@microsoft.comwww.CaoSonBlog.comwww.CaoSonBlog.com
Defense in Depth with Microsoft Defense in Depth with Microsoft ProductProduct
Enhanced SecurityAll communications are authenticated, authorized & healthyDefense-in-depth on your terms with DHCP, VPN, IPsec, 802.1XPolicy-based access that IT Pros can set and control
Increased Business Value
Preserves user productivity Extends existing investments in Microsoft and 3rd party infrastructure Broad industry partnership
Soft-based solution, free with Windows Soft-based solution, free with Windows Server 2008.Server 2008.
Integrated into the client operating system Integrated into the client operating system (XP SP3, Vista)(XP SP3, Vista)
Intergrated with Core System Intergrated with Core System (SCCM,FCS,WSUS)(SCCM,FCS,WSUS)
Integration with 3Integration with 3rdrd party security party security products(Cisco,Juniper,Symantec, Mcafee)products(Cisco,Juniper,Symantec, Mcafee)
NAP + Domain & Server Isolation = NAP + Domain & Server Isolation = Enforment SecEnforment Sec
Multiple types of enforcementMultiple types of enforcement
Using NAP with VPN/Ipsec/802.1xUsing NAP with VPN/Ipsec/802.1x
Q&AQ&A
AgendaAgenda
NAP with VPN and RRASNAP with VPN and RRAS
NPS ServerClient VPN Server
Remediation Servers
RADIUS MessagesPEAP Messages
IPsec-based CommunicationIPsec-based Communication
Secure networkSecure network
Boundary networkBoundary network
Restricted networkRestricted network
IPsec AuthenticatedIPsec Authenticated
UnauthenticatedUnauthenticated
Most Wireless Security for Enterprise with NAPMost Wireless Security for Enterprise with NAPInteroperation with many 802.1x SwitchInteroperation with many 802.1x Switch
Network Policy ServerNetwork Policy ServerAuthentication ServerAuthentication Server