Checklist: Staging a NAP Deployment

Applies To: Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2

This parent checklist includes cross-reference links to important concepts about staging your Network Access Protection (NAP) deployment. It also contains links to subordinate checklists that will help you complete the required tasks. Perform these tasks after you have completed lab testing of NAP.


Complete the tasks in this checklist in order. When a reference link takes you to a conceptual topic or to a subordinate checklist, return to this topic after you review the conceptual topic or you complete the tasks in the subordinate checklist so that you can proceed with the remaining tasks in this checklist.

Checklist: Staging a NAP deployment

  Task Reference

Identify and prioritize goals; decide on enforcement types; define governance policy; identify pilot sites; document deployment decisions and processes.

Identifying Your NAP Deployment Goals

Choose an Enforcement Method

Choose a Compliance Strategy

Design an Exception Management Strategy

Appendix C: Documenting Your NAP Design

Implement a NAP pilot deployment using reporting mode; start with a contained site or subnet and expand until you have fully deployed NAP at the pilot site.

Configure Network Policy for Reporting Mode

Configure your NAP pilot deployment for deferred enforcement mode; evaluate impact.

Configure Network Policy for Deferred Enforcement

Configure your NAP pilot deployment for full enforcement mode.

Configure Network Policy for Full Enforcement

Add more system health agents (SHAs); configure NAP to first report and then later enforce compliance for these new SHAs when compliance levels are high enough to meet your goals; reevaluate your compliance strategy as necessary.

Checklist: Deploy SHAs and SHVs

Add sites and scale out; implement load balancing and redundancy as needed; reevaluate goals and assess benefits.

NAP Capacity Planning

Benefits of NAP

Identifying Your NAP Deployment Goals

Add new enforcement types as required by the architecture and design; repeat the staging process.

Mapping Your Deployment Goals to a NAP Design