You work as the enterprise administrator at ABC.com. ABC.com has a domain named ABC.com. The ABC.com network servers run Microsoft Windows Server 2008. ABC.com has a computer named ABC-SR01 configured to host the Active Directory Certificate Services (AD CS) and the Network Access Protection
ABC.com has a division of marketing users accessing the network using laptop computers.
How would you ensure that a created policy is enforced on the laptop computers?
A.
By configuring 802.1X authentication on all access points.
B.
By configuring WPA2 and EAP-TLS authentication on all laptop computers.
C.
By having Extensible Authentication Protocol (EAP) used on all laptop computers.
D.
By configuring WPA2, 802.1X authentication and EAP-TLS on all laptop computers.
E.
By having Internet Protocol Security (IPSec) protocol used on all laptop computers.
Explanation:
To ensure that NAP policies are enforced on laptop computers that use a wireless connection to access the network, you need to configure all access points to use 802.1X authentication.802.1X enforcement enforce health policy requirements every time a computer attempts an 802.1X-authenticated network connection. 802.1X enforcement also actively monitors the health status of the connected NAP client and applies the restricted access profile to the connection if the client becomes noncompliant.
Reference: Microsoft Improves Security Policy Compliance with Network Access Protection
http://www.microsoft.com/casestudies/casestudy.aspx?casestudyid=4000000983