DRAG DROP
Your network contains an Active Directory domain named contoso.com. The domain contains five
servers. The servers are configured as shown in the following table.
You plan to implement Network Access Protection (NAP) with IPSec enforcement on all client computers.
You need to identify on which servers you must perform the configurations for the NAP deployment.
Which servers should you identify? To answer, drag the appropriate servers to the correct actions. Each
server may be used once, more than once, or not at all. You may need to drag the split bar between
panes or scroll to view content.)
Answer: 
Explanation:
Box 1: Server 3 (Network Policy Server)
We use a Network Policy Server, Server3, to configure health policies.
Box 2: Server 1
* Server1 (Domain Controller)
‘You can configure NAP clients through Group Policy or local computer policy. This feature is installed
automatically on a domain controller running Windows Server 2008 and Windows Server 2008 R2. This
feature can be installed on a member server running Windows Server 2008 or Windows Server 2008 R2.
You can use Group Policy to configure NAP settings on NAP clients running Windows Server 2008,
Windows Server 2008 R2, Windows Vista, Windows 7, and Windows XP SP3.
Box 3: Server 3 (Network Policy Server)
You configure remediation server groups on the Network Policy Server and reference a particular
remediation server group as part of the network policy for non-compliant computers