Health Registration Authority

Applies To: Windows Server 2008, Windows Server 2012

Health Registration Authority (HRA) is a component of a Network Access Protection (NAP) infrastructure that plays a central role in NAP Internet Protocol security (IPsec) enforcement. HRA obtains health certificates on behalf of NAP clients when they are determined to be compliant with network health requirements. These health certificates authenticate NAP clients for IPsec-protected communications with other NAP clients on an intranet. If a NAP client does not have a health certificate, the IPsec peer authentication fails and the NAP client cannot initiate communication with other IPsec-protected computers on the network.

HRA is installed on a computer that is also running Network Policy Server (NPS) and Internet Information Services (IIS). If they are not already installed, these services will be added when you install HRA.

See Also


Overview of Health Registration Authority
Checklist: Deploy NAP IPsec Enforcement with HRA
Configuring HRA
Understanding HRA Authentication Requirements
Understanding HRA Request Policy
Configure NAP Certification Authority
Configure HRA Cryptographic Policy
Configure HRA Transport Policy
Troubleshooting HRA
Understanding NAP IPsec Enforcement
Verify Certification Authority Configuration
Verify NAP Client Configuration
Verify NPS Configuration
Verify IIS Configuration