Client Computers Cannot Remediate Their Health

Applies To: Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2

In a Network Access Protection (NAP) deployment, this problem typically occurs when client computers cannot contact one or more remediation servers. It can also be caused if a service that is required to perform automatic remediation is not running on the client computer.

Description of system behavior

In order to remediate their health, NAP client computers must have access to network services, such as DNS, as well as services that provide required updates. If the restricted network does not provide these services, client computers will be unable to update their health status to become compliant with health requirements and obtain full network access.

Associated operating system events

  • NPS event ID 6276: Network Policy Server quarantined a user.

Root cause diagnosis and resolution

Noncompliant NAP client computers might be unable to update their health status if required services are not available. These services might be missing from a restricted access network, or they could be services that are typically running on the client computer. If these services are on the client computer, verify that the current user has sufficient permissions.