UEU-co logo

ch11lev1sec12.html


Previous Page Next Page

Adding Remediation Servers

Remediation servers are the servers to which the network client connects when it needs to remediate a violation of an access policy such as those provided by the WSHV. The purpose of the remediation server is to help the client take care of the problem. So, if the problem is that the client does not have the latest antivirus signatures installed, the remediation server should supply the most up-to-date antivirus signatures.

To add a remediation server (or servers) to the Network Policy Server configuration, expand the Network Access Protection node (in the Network Policy Server snap-in). Then right-click on the Remediation Server Groups node and select New from the shortcut menu. The New Remediation Server Group dialog box opens (see Figure 11.20).

Figure 11.20. Create a new remediation server group.

Type a name for the server group. Then click Add to add a server to the group. The Add New Server dialog box opens (see Figure 11.21).

Figure 11.21. Add servers to the remediation group.

You can add a server (or servers) to the new remediation group by friendly name, IP address, or DNS name. After entering the name (or IP address) to identify the server, click OK. The server is added to the group. You can add other servers to the group as needed and create more remediation groups as needed. Click OK to close the New Remediation Server Group dialog box when you have finished creating groups and adding servers. The new group or groups appear in the Details pane when you select the Remediation Server Groups node in the node tree. (You can edit a group by double-clicking the group.)

Remember that the purpose of the remediation server is to help the client remedy the policy violation. The server needs to be configured with the appropriate fix (an example would be a share that provides needed files) to get the client back onto the network with full functionality.

By the Way

Some remediation related to the WSHV is handled automatically. For example, if the Windows Firewall is required by the WSHV and it is turned off on the client, the client OS is instructed to enable the firewall.

Previous Page Next Page

Leave a Reply


Time limit is exhausted. Please reload the CAPTCHA.

Categories

apply_now Pepperstone Group Limited