Dears,
I have done several NAP with DHCP enforcement, and it was easy to assign non compliant computers to isolated subnet.
Now I am doing NAP with IPsec enforcement only, and I am not able to isolate the non compliant computers.
on client I can see:
Unfortunately, the client is still able to access everything, all the resources..., below shows NPS Policy:
When I changed My "NAP IPsec with HRA Noncompliant" Network Policy from Access Type "Grant Access" to "Deny Access", my clients shows that they are compliant...
So Please advice, I am sick and confused of this status.... and I have to isolate non compliant...