The term remediation means correction. As its name implies, remediation is the process of correcting something, here it refers to the process of correcting a client’s non- compliant health state to a compliant state.
While configuring NAP, it is possible to set some policies that must be applied on NAP clients. Only those who comply with NAP policies can access the network and enjoy the services. But what if the client’s health state doesn’t comply with NAP policies? This is where remediation servers play their role.
Remediation servers are used along with NAP (Network Access Protection). Remediation server groups are used to specify available servers for the purpose of correcting the NAP Clients health state. Remediation servers are used for converting a NAP client’s vulnerable health state to NAP compliant health state so that he can access to a network and enjoy the services provided.
The diagram shown below can help you understand the purpose of remediation servers much better.
(Photo Courtesy: fisg-us.blogspot.in)
The purpose of remediation servers are not only limited to provide the updates to non-compliant computers. Remediation servers do help the non-compliant computers to retain its health status as compliant. It also helps those computers to perform a limited set of tasks while they are in restricted status.
We can set the accessibility option of Remediation servers set either to allow communication from compliant/non-compliant computers or from non-compliant computers only. This depends on the NAP enforcement method.