Deploying IPsec Policies with NAP

Applies To: Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2

When you deploy IPsec policies with NAP, the network is divided into logical networks. The logical networks are defined in terms of which computers have health certificates and which computers require IPsec authentication with health certificates for incoming communication attempts. IPsec logical networks provide protection for compliant computers by restricting access to the secure network to trusted computers that meet health requirements.

Deploying IPsec policies with NAP

Before you deploy IPsec policies, be sure that you have reviewed the following conceptual topics in the Network Access Protection Design Guide:

After you have reviewed these topics, complete the steps in Checklist: Deploy IPsec Policies for NAP.

See Also


Checklist: Implementing an IPsec Enforcement Design