Health Registration Authority

Health Registration Authority (HRA) is a component of a Network Access Protection (NAP) infrastructure that plays a central role in NAP Internet Protocol security (IPsec) enforcement. HRA obtains health certificates on behalf of NAP clients when they are compliant with network health requirements. These health certificates authenticate NAP clients for IPsec-protected communications with other NAP clients on an intranet. If a NAP client does not have a health certificate, the IPsec peer authentication fails and the NAP client cannot initiate communication with other IPsec-protected computers on the network.

HRA is installed on a computer that is also running Network Policy Server (NPS) and Internet Information Services (IIS). If they are not already installed, these services will be added when you install HRA.

• Overview of HRA
  
  
• Checklist: Deploy NAP IPsec Enforcement with HRA
  
  
• Configuring HRA
  
  
• Understanding HRA Authentication Requirements
  
  
• Understanding HRA Request Policy
  
  
• Configure NAP Certification Authority
  
  
• Configure HRA Cryptographic Policy
  
  
• Configure HRA Transport Policy
  
  
• Troubleshooting HRA
  
  
• Understanding NAP IPsec Enforcement
  
  
• Verify CA Configuration
  
  
• Verify NAP Client Configuration
  
  
• Verify NPS Configuration
  
  
• Verify IIS Configuration