Share via


Overview Properties

Applies To: Windows Server 2008, Windows Server 2008 R2

On the Overview tab of a network policy or while running the New Network Policy wizard, you can configure the following:

  • Policy name. Type a friendly name for the network policy.

  • Policy State. Designate whether the policy is enabled or disabled.

  • Access Permission. Designate whether the policy grants or denies access. Also specify whether you want the server running Network Policy Server (NPS) to ignore the dial-in properties of user accounts in Active Directory Domain Services (AD DS) when using the policy to perform authorization for a connection attempt. For more information, see Access Permission.

Note

If you have many user accounts in AD DS, it is recommended that you configure the dial-in properties of user accounts so that network access is controlled through network policy; however, you can accomplish the same result for individual policies by configuring them to ignore the dial-in properties of user accounts.

  • Network connection method. When used for most or all network policies, this setting allows NPS to filter policies and to process only relevant policies when it receives a connection request from a specific type of network access server. For example, if NPS receives a connection request from an Ethernet switch, it will not process network policies for Routing and Remote Access service (RRAS) servers or Terminal Services Gateway (TS Gateway) servers, but it will evaluate policies for Ethernet switches. (If NPS does not find an Ethernet policy that matches the connection request, NPS then evaluates policies with a Type of network access server value of Unspecified.) Choose from the following network connection methods:

    • Unspecified. If selected, NPS evaluates the network policy for all connection requests that originate from any type of network access server and for any connection method. This includes connections from TS Gateway servers, RRAS servers that provide VPN and dial-up access, DHCP servers, 802.1X wireless access points, 802.1X-capable switches, Health Registration Authority (HRA) servers, and Host Credentials Authorization Protocol (HCAP) servers.

Important

When you configure network policies for wireless access points, you must use a Type of network access server value of Unspecified.

  - **Remote Access Server (VPN-Dial-up)**. If specified, NPS evaluates the network policy for connection requests that originate from a computer running the Routing and Remote Access service configured as a dial-up or VPN server. If another dial-up or VPN server is used, the server must support the RADIUS protocol and the authentication protocols provided by NPS for dial-up and VPN connections.  
      
  - **Ethernet**. If specified, NPS evaluates the network policy for all connection requests that originate from IEEE 802.1X-capable switches.  
      
  - **Terminal Services Gateway**. If specified, NPS evaluates the network policy for connection requests that originate from servers that are running Terminal Services Gateway (TS Gateway).  
      
  - **Health Registration Authority**. If specified, NPS evaluates the network policy for connection requests that originate from servers that are running Health Registration Authority (HRA).  
      
  - **HCAP server**. If specified, NPS evaluates the network policy for connection requests that originate from servers that are running Host Credentials Authorization Protocol (HCAP).  
      
  - **DHCP Server**. If specified, NPS evaluates the network policy for connection requests that originate from servers that are running Dynamic Host Configuration Protocol (DHCP).