Your network contains an Active Directory domain named contoso.com.
Network Policy Server (NPS) is deployed to the domain.
You plan to deploy Network Access Protection (NAP).
You need to configure the requirements that are validated on the NPS client computers.
What should you do?
A.
From the Network Policy Server console, configure a network policy.
B.
From the Network Policy Server console, configure a health policy.
C.
From the Network Policy Server console, configure a Windows Security Health Validator (WSHV)
policy.
D.
From a Group Policy object (GPO), configure the NAP Client Configuration security setting.
E.
From a Group Policy object (GPO), configure the Network Access Protection Administrative
Templates setting.
Correct
The Windows Security Health Validator (WSHV) provides settings that you can configure based on the requirements of your deployment. When you enable requirements in the WSHV, client computers that do not meet all of these requirements are evaluated as noncompliant with the WSHV. Depending on settings in network policy and health policy, client computers that are noncompliant with the WSHV might have their network access restricted and be automatically remediated. Whether or not a client computer that is noncompliant with the WSHV is ultimately noncompliant with NAP health policy depends on the System Health Validators (SHVs) that are configured in health policy as required for compliance.
Windows Security Health Validator: https://technet.microsoft.com/en-us/library/cc731260.aspx
1
0