Archive for March, 2008
Windows Server 2008 as a workstation?!
ARecently there have been numerous publications describing the Windows Server 2008 as a workstation. On the occasion of my testing Hyper-V RC version, I decided to check whether it actually possible to use Win2k8 as a system of daily use ...
First impressions were very pozytyne, the system will run much faster, without any problems also worked Aero skin ...
But when zaczołem install additional software was not so beautiful. Skype "wykrzaczał" to zarazaz after takeoff, just install the old version (3.1.0.152) allowed for its proper operation. Similar problems encountered during the installation of several devices including a TV tuner - in his case, I could not even solve the problem.
In principle, other programs and devices work properly but in my case, I abandoned the idea to use Windows Server 2008 as a workstation - at least until my TV tuner will work fine 
. However, if you do not have such "malicious" devices heartily recommend domesticated W2k8.
Configuring Network Access Protection client through GPO
0The mechanism of network security Network Access Protection in Windows Server 2008, aroused considerable interest and sparked a huge amount of questions. Most of them concern the client configuration and how to facilitate the work of this mechanism.
Since I am an advocate of facilitating the work I prepared a list of paths important settings in a GPO configuration useful in the NAP.
For proper operation of the Network Access Protection requires that the client system has been incorporated into the Security Center:
| Computer Configuration \ Administrative Templates \ Windows Components \ Security Center | |
| Option: | Turn On Security Center (Domain PCs Orly) |
| Setting | Enabled |
To the client system can properly communicate with NAP server architecture enable (configure automatic start services) Service Agent client station:
| Computer Configuration \ Policies \ Windows Settings \ Security Settings \ System Services \ | |
| Option: | Network Access Protection Agent |
| Setting | Automatic |
Configure NAP client settings to configure the type of force, interface, HRA:
Determining the type of force used
| Computer Configuration \ Policies \ Windows Settings \ Network Access Protection \ NAP Client Configuration | |
| Option: | \ Enforcement Clients \ |
| Setting: | Enabled this enforcement client |
| Notes: | configuration must be made for each, using such force |
Configuring the user interface
| Computer Configuration \ Policies \ Windows Settings \ Network Access Protection \ NAP Client Configuration | |
| Option: | \ User Interface Settings \ |
| Setting: | Title, Description Image |
| Notes: | define the individual user interface elements |
Defining the cryptographic
| Computer Configuration \ Policies \ Windows Settings \ Network Access Protection \ NAP Client Configuration | |
| Option: | \ Health Registration Settings \ Request Policy \ |
| Setting: | Hash Algorithm, Cryptographic Service Provider |
| Notes: | select the algorithm and cryptographic service provider that uses the client to communicate with HRA (Health Registration Authority) |
Creating HRA trusted server groups
| Computer Configuration \ Policies \ Windows Settings \ Network Access Protection \ NAP Client Configuration | |
| Option: | \ Health Registration Settings \ Trusted Server Group \ |
| Setting: | Group Name, Server |
| Notes: | you must specify a trusted group (s) servers - configuration wizard using the path to the server should be defined as follows: https://nazwa_serwera.domena/domainhra/hcsrvext.dll https://nazwa_serwera.domena/nondomainhra/hcsrvext.dll |
Kamil Skalski 59 comments 
Darek 6 comments 
Kamil 5 comments 
septus 4 comments 
Nerus 4 comments 
Amandi 4 comments 
Luke 3 comments 
Wojciech Marusiak 3 comments 
Robert Stuczynski 3 comments 
Badura 3 comments 
Mariusz Kędziora 3 comments 
Michal 2 comments 
