Network Policy Service's or network policy and access service is which actually includes several features,
benefits that we can actually use with our environment because we can actually control how things access their network, and we're actually going to start off for getting the role installed. First thing we do, obviously, is
manage on their server. Do add rolls and features. Start with that,
and we'll get our ad rules. Features wizard pop up screen, then three. Click on next on that we could also have to do to remove
world baster future based that is correct. The other option for Officer remote desktop service is is very clear that it's the only thing separate from role based or feature based
so quick out next, and then you choose your server. So the server is actually be any server that you actually have in your server pool.
In this particular case will choose our one, sir, that we have in our pool here
Ever choose from our number, policy and exits service environment.
First we want to do is select network policy and access service is. You go ahead and check the box,
you Did you add this couple of futures in here? Go ahead. Dad does it.
And then we go ahead and click on next,
if you did too, and you're gonna you know you're gonna be doing some other components with it. You could actually choose one of your features here.
We don't actually need to do any of our features with this. We're just gonna had run through here with Quicken.
It says their policy and accessories allows you to define it, enforce policies for network access, authentication, authorization and client health using their policies ever Health registration authority and host credential. Authentication protocol.
a big piece of the puzzle. I was Ricky deployed as a remote off medication dial and user for service radius as a proxy. And we could do that work extra protection policies, server
after his stall it using the Wizard. We can configure it with the MPs from the A. P s home page using the MPs counsel
nap helps you assure that the computer connected to your network are compliant with organizational or
requirements that us specially configured for your environment.
And these typically are gonna include things like
having a bad time. I'll wear on their having up to date patches, things that nature so quick out next, there
and here we have three options.
Yeah, lest we have the network policy server, their health registration authority and host credits off that authorization protocol.
Those are the three we could use rejects. Go do just stick with our
network policy. Several look at next,
and obviously we have our standard restart the destination server automatically if required. It's not required that it won't restart.
This is useful if you know that you're going to be doing multiple things and you want to come back to it.
and does you have lasting? We have here is installed. Then we're next or previous,
so going quicker next to it could export the configuration settings. That's our option that we would have so we could exploit the configuration settings
right. Click out his stall.
Don't start the installation and run through the screen, and it tells us obviously, that we can close the wizard while it's running. And if we close the wizard and we know that we told it to reroute it necessary that a lot of magic reboot without giving us any more problems in this particular case, we did not tell us to do that, where she want to see the process,
because we actually are
install it and monitor it and actually get it up and running. And then we will actually be configuring it. Awesome.
So it goes through here
and we have a couple of minutes where actually goes to in the stalls, the pieces we need
and that we will actually have to
do the next step. The next step, obviously will be choosing what we're gonna do with it. You could do choose any of the options that you have, but we're gonna stick with going through things one at a time.
is when he does finish just only we actually have to make sure we registered that the network policy service itself
into our active directed a varmint.
even though we installed the service
on the server, we accept their picture. A. D is good, too.
Be coordinating or reading information from, you know, our policy service officially including
log on credentials, things of that nature. So here we have, we are installations succeeded and we go and click out of clothes
head. We're back to our main screen
and notice we didn't get prompted for a restart. So now we're actually going to look for our tool for that
and we have a There's a HR eight on here, says Health Registration
interview. Whatever. Policy Server Also. So go ahead and click on Network Policy Server.
admitted tool to launch
It should only take a moment here.
Get that in their screen where we needed to be.
So here's our network Policy Service
Now what we need to do is we need to make sure to register the server in active directory. So honor that were policy server here, right?
We could actually double click on it,
expanded out single, click on it
and notice how we have
the options to go through Ed
in the navigation pane.
Do a few different things. So over here getting started says there were probably service laws is to create organization. We have a standard configuration.
What we're gonna do here are advanced configuration are templates configuration.
So we have a variety of things here on the screen
and that we actually go through and work out our next piece of the puzzle
President. Now that we have all of our
configuration screens we saw here things like Radius clients counting network policies in the school that we actually have You figuring nap, configuring radius proxy. We have all our screens here in our basic configuration. What that we actually want to do. As I said before, there was actually get this registered and active directory. So let's go ahead and right click on their server itself
and actually register the server and active directory. So all you have to do is go and click on Register Server and Active Directory says to enable and Fiesta authentic eases in the actor director into computers. Running MPs must be authorized to read users dialling properties from the debate because that's where it's stored in active directly to wish to authorize his computer to read,
use dollar properties from the
domain. Obviously we need thio
so quick out. Okay, this is a computer is now authorized.
That's what they authorize the computers
to authorize. Dis computer to read, uses Dolly computers from
other domains, you know, stretches to this computer to be a member of
the the the Wrasse and P s service group in that debate. So if what? I actually do it from different demands that you have to go through and configure it into the right group environment.
So there we go. We actually now have it registered with our environment.
It we are done with installing it in getting the basic set up, that
obviously configuration is the next step, and we will get to that in a lesson.