Share via


Things to Check Before Troubleshooting NAP

Applies To: Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2

Before you begin troubleshooting, verify the following services and configurations on Network Access Protection (NAP) servers and client computers.

Before you begin troubleshooting

Do the following before you begin to troubleshoot a NAP problem:

  • Review the client operating system and version

  • Review network settings

  • Review NAP client settings

  • Review services running on NAP clients

  • Review NAP-related event logs

Review the client operating system and version

The NAP Agent service is available on the following operating systems:

  • Windows XP with Service Pack 3 (SP3)

  • Windows Vista with no service packs installed

  • Windows Vista with SP1

  • Windows Server 2008

  • Windows Server 2008 R2

To participate in a NAP deployment, computers and devices that are not running one of these operating systems must be exempt from NAP health evaluation. Other devices might be compatible if they are supported by a NAP partner. For more information, see Network Access Protection Partners (https://go.microsoft.com/fwlink/?LinkID=127724).

To view the client operating system and version using the Windows interface

  • Click Start, click Run, type winver, and then press ENTER.

To view the client operating system and version using the command line

  1. Click Start, click Run, type cmd, and then press ENTER.

  2. At the command prompt, type systeminfo, and press ENTER.

Note

Computers running the Windows Vista Home Premium operating system, the Windows Vista Home Basic operating system, or Windows XP Home Edition with SP3 can be NAP clients, but cannot be members of a domain.

Review network settings

Obtain information about all network connections on the NAP client computer.

To view and record network settings

  1. Click Start, click Run, type cmd, and press ENTER.

  2. At the command prompt, type ipconfig/all, and press ENTER.

  3. To write network settings to a text file, type ipconfig/all > ipconfig.txt, and press ENTER.

Review NAP client settings

Obtain information about NAP settings configured on the client computer.

To view and record NAP client settings

  1. Click Start, click Run, type cmd, and press ENTER.

  2. At the command prompt, type netsh nap client show state, and press ENTER. This command displays the NAP configuration of the client computer.

  3. To write NAP client state to a text file, type netsh nap client show state > state.txt, and press ENTER.

  4. At the command prompt, type netsh nap client show config, and press ENTER. This command displays local NAP client configuration settings.

  5. To write NAP client local configuration settings to a text file, type netsh nap client show config > config.txt, and press ENTER.

  6. At the command prompt, type netsh nap client show group, and press ENTER. This command displays NAP client Group Policy configuration settings.

  7. To write NAP client Group Policy configuration settings to a text file, type netsh nap client show group > group.txt, and press ENTER.

Review services running on NAP clients

Obtain information about services running on the client computer.

To view and record services information

  1. Click Start, click Run, type cmd, and press ENTER.

  2. At the command prompt, type net start, and press ENTER. This command displays a list of the services currently running on the client computer.

  3. To write a list of services currently running on the client computer to a text file, type net start > servicerun.txt, and press ENTER.

  4. At the command prompt, type sc query, and press ENTER. This command displays the state and current configuration of all services on the client computer.

  5. To write the services configuration on the client computer to a text file, type sc query > serviceconfig.txt, and press ENTER.

Obtain information about NAP-related events on the client computer and NAP-related events on the server running Network Policy Server (NPS), and if applicable, Health Registration Authority (HRA).

  1. Click Start, click Run, type eventvwr.msc, and then press ENTER.

  2. If the computer is running Windows 7, Windows Vista, Windows Server 2008 R2, or Windows Server 2008, in the console tree, open Applications and Services Logs\Microsoft\Windows\Network Access Protection\Operational.

  3. If the computer is running Windows XP with SP3, in the console tree, open the System log.

  1. Click Start, click Run, type eventvwr.msc, and then press ENTER.

  2. In the console tree, open Custom Views\Server Roles\Network Policy and Access Services.

See Also

Concepts

Quick Fixes for NAP