Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.

Published byGavin Terry Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection."— Presentation transcript:

1 1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection

2 Wireless Access Configuration in Windows Server 2008 802.1x standard –Developed by the Institute of Electrical and Electronics Engineers (IEEE) On 802.1x networks –Network access control provides an authentication mechanism to allow or deny network access based on port connection –WPA2-EAP (Wi-Fi Protected Authentication 2 – EAP) 2

3 Wireless Access Configuration in Windows Server 2008 (continued) Categories of EAP implementations –EAP over local area network (LAN) EAP-TLS –EAP over wireless PEAP: Protected Extensible Authentication Protocol 802.1x uses a three-component model for authenticating access to networks –Supplicant –Authenticator –Authentication server 3

4 4

5 Internet Protocol Security An open-standards framework for securing network communications IPSec meets three basic goals –Authentication –Integrity –Confidentiality 5

6 IPSec Threats Depending on the configuration of IPSec, it provides protection from the following threats –Data tampering –Denial of service –Identity spoofing –Man-in-the-middle attacks –Repudiation –Network traffic sniffing 6

7 How IPSec Works IPSec modes of operation –Transport mode –Tunnel mode Scenarios available when deploying IPSec –Site to site –Client to client –Client to site 7

8 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration 8

9 9

10 Using IPSec

11 How IPSec Works (continued) IPSec security association modes –IPSec uses the Internet Key Exchange (IKE) to negotiate security protocols –IKE generates the encryption and authentication keys used by IPSec for the transaction –IPSec performs transactions in two phases Main mode/Phase 1 Quick mode/Phase 2 11

12 How IPSec Works (continued) IPSec security methods –IPSec uses two security services Encapsulating Security Payload Authentication Header IPSec policies –Can be managed with the following tools WFAS, IP Security Policy snap-in Netsh, GPME 12

13 13

14 14

15 Network Access Protection NAP can be broken into three parts –Health policy validation –Health policy compliance –Access limitation 15

16 NAP Terminology Enforcement Client Enforcement Server Host Credential Authorization Protocol Health Registration Authority Network Policy Server Remediation Server System Health Agent System Health Validator 16

17 NAP Enforcement Methods The five types of NAP enforcement methods used by NAP –802.1x-authenticated connections –Dynamic Host Configuration Protocol (DHCP) address configurations –IPSec communications –Terminal Services Gateway (TS Gateway) connections –Virtual Private Network (VPN) connections 17

18 Implementing NAP NAP –Designed by Microsoft to allow you to customize it to meet the unique needs of your networks –Implementing and configuring NAP differs from network to network based on requirements and policies 18

19 19

20 Installing NAP NAP is part of the NPS role To install NAP components –Add the NPS role either through the Role Services Wizard or from the command line using servermanagercmd.exe 20

Download ppt "1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection."

Similar presentations

Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.

All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.
Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
5.1 Overview of Network Access Protection What is Network Access Protection NAP Scenarios NAP Enforcement Methods NAP Platform Architecture NAP Architecture.

5.1 Overview of Network Access Protection What is Network Access Protection NAP Scenarios NAP Enforcement Methods NAP Platform Architecture NAP Architecture.
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
Agenda Virtual Private Networks (VPNs) Motivation and Basics Deployment Topologies IPSEC (IP Security) Authentication Header (AH) Encapsulating Security.

Agenda Virtual Private Networks (VPNs) Motivation and Basics Deployment Topologies IPSEC (IP Security) Authentication Header (AH) Encapsulating Security.
Chapter 10 Securing Windows Server 2008 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration.

Chapter 10 Securing Windows Server 2008 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration.
4.1 Configuring Network Access Components of a Network Access Services Infrastructure What is the Network Policy and Access Services Role? What is Routing.

4.1 Configuring Network Access Components of a Network Access Services Infrastructure What is the Network Policy and Access Services Role? What is Routing.
Network Security. Reasons to attack Steal information Modify information Deny service (DoS)

Network Security. Reasons to attack Steal information Modify information Deny service (DoS)
Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.

Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.
IPsec: Internet Protocol Security Chong, Luon, Prins, Trotter.

IPsec: Internet Protocol Security Chong, Luon, Prins, Trotter.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Agenda Introduction Network Access Protection platform architecture

Agenda Introduction Network Access Protection platform architecture
Module 3 Windows Server 2008 Branch Office Scenario.

Module 3 Windows Server 2008 Branch Office Scenario.
Network Access Protection Platform Architecture Joseph Davies Technical writer Windows Networking and Device Technologies Microsoft Corporation.

Network Access Protection Platform Architecture Joseph Davies Technical writer Windows Networking and Device Technologies Microsoft Corporation.
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.

1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
802.1x EAP Authentication Protocols

802.1x EAP Authentication Protocols
VPN – Technologies and Solutions CS158B Network Management April 11, 2005 Alvin Tsang Eyob Solomon Wayne Tsui.

VPN – Technologies and Solutions CS158B Network Management April 11, 2005 Alvin Tsang Eyob Solomon Wayne Tsui.
Internet Protocol Security (IPSec)

Internet Protocol Security (IPSec)

Similar presentations

Ads by Google