Understand Network Access Protection (NAP)

Created: Jan 16, 2022 13:46:26Latest reply: Jan 16, 2022 14:07:32 154 1 9 0 0

SCENARIO:

Adventure Works is one of the nation’s largest suppliers of high-end sporting equipment. Twenty-fi ve

Adventure Works sales associates travel throughout the country selling sporting equipment to retailers. They

return to corporate headquarters every Friday with their laptops for meetings and training.

Allie Bellew is the network administrator for Adventure Works and would like to implement a method for ensuring

that the mobile devices are in a good state of security “health” when they access the corporate network

during these Friday meetings.

1. What control or strategy can Allie implement to assure security health?

a. Network Access Protection, which will verify the integrity of each mobile device

b. virus scans each time sales associates log in

c. re-imaging each laptop prior to connecting to the network

2. Aside from protecting against a virus-infected laptop, what else can NAP do?

a. protect against lost data

b. nothing else—it is simply a glorified virus scan

c. verify the complete integrity of the device by checking that it has the most recent

software updates or configuration changes

3. What can Allie do about computers that are not compatible with NAP?

a. upgrade the computers that are not compatible

b. define exceptions in NAP for those devices that are not compatible

c. prevent those devices from using the network

Answers

1. Allie can implement:

a. Network Access Protection, which will verify the integrity of each mobile device

2. Aside from protecting against a virus-infected laptop, NAP can:

c. verify the complete integrity of the device by checking that it has the most recent software

updates or configuration changes. Systems that have not received updates can be as problematic as

systems infected by malware.

3. For computers that are not compatible with NAP, Allie should:

b. define exceptions in NAP for those devices that are not compatible

Essential details

• Network Access Protection (NAP) is a new platform and solution that controls access to network resources

based on a client computer’s identity and compliance with corporate governance policy.

• NAP enforcement points are computers or network access devices that use NAP or can be used with

NAP to require the evaluation of a NAP client’s health state and provide restricted network access or

communication.