Network Access Protection (NAP) is a Microsoft technology for controlling network access of a computer host based on the system health of the host. With NAP, system administrators of an organization's computer network can define policies for system health requirements.
Network Access Protection (NAP) is designed to help administrators maintain the health of the computers on the network, which in turns helps maintain the overall integrity of the network. It is not designed to secure a network from malicious users. For example, if a computer has all the software and configurations that the network access policy requires, the computer is considered healthy or compliant, and it will be granted the appropriate access to the network. NAP does not prevent an authorized user with a compliant computer from uploading a malicious program to the network or engaging in other inappropriate behavior.
NAP allows administrators to create and enforce health policies for computers that connect to the enterprise network. The policies govern both the installed software components and the system configurations. Computers connected to the network, such as laptops, workstations and other such devices, are evaluated against the configured health requirements.
Health requirements include:
• A firewall is enabled,
• An antivirus program is installed,
• The antivirus program is up to date,
• Automatic Windows Update is enabled, etc.