Microsoft network access control

Question

Hi everyone,

We want to deploy a secure WIFI in our network. we are using a certificate based WIFI which means and also hide it. The plan is to use MECM \ Intune (we are in a hybrid state) to deploy the network profile and to set the user to connect to the network automatically.

Since we are in a hybrid state, some of our laptops are domain joined and other are Azure joined. For the domain joined laptops we want to use a Microsoft product (Whatever replaced NPS HRA) to be the NAC server when connecting to the network.

Any ideas?

Rahamim.

Answer 1

Hi ,

Network Access Protection (NAP), Health Registration Authority (HRA), and Host Credential Authorization Protocol (HCAP) were deprecated in Windows Server 2012 R2, and are not available in Windows Server 2016.

For the domain joined laptops we want to use a Microsoft product (Whatever replaced NPS HRA) to be the NAC server when connecting to the network.

You may find third party product to replace NPS HRA.

In the meantime, you may submit the feature request within Windows Server User Voice website below, contents on which are closely monitored by product team:

https://windowsserver.uservoice.com/forums/295047-general-feedback

Best Regards,

Candy

--------------------------------------------------------------

If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Answer 2

Also, Conditional Access is not a NAC solution. Conditional Access provides a gate on Azure AD authentication for services that use AAD auth. There is no on-prem component.