Step-by-Step Guide for Setting Up Network Quarantine and Remote Access Certificate Provisioning in a Test Lab

    This step-by-step guide includes updates to the original guide due to security enhancements in the release of Windows Server 2003 with Service Pack 1 (SP1) and Windows XP Professional SP2.
    • Version:


      File Name:


      Date Published:


      File Size:

      1.8 MB

        This step-by-step guide includes updates to the original guide due to security enhancements in the release of Windows Server 2003 with SP1 and Windows XP Professional with SP2.

        Network administrators who design and implement remote access solutions often face two problems: how to deploy a practical implementation of Layer Two Tunneling Protocol with Internet Protocol Security (L2TP/IPSec) and how to enforce network access requirements on remote computers. By using the Microsoft Windows Server 2003 family and the Windows Server 2003 Resource Kit Tools, network administrators can solve both problems using certificate provisioning and Network Access Quarantine Control.
        Although certificate provisioning and Network Access Quarantine Control are separate configuration processes, both processes are demonstrated in the single Connection Manager profile described in this test lab. This white paper describes how to configure the domain so that:

        • Remote access clients that are not joined to the domain can automatically obtain certificates over the network.

        • Remote access clients that do not comply with network access requirements are restricted to only the file share and Web site that are available on the quarantine resource.

        • Remote access policies limit the duration of Point-to-Point Tunneling Protocol (PPTP) connections but not of L2TP/IPSec connections.

        As part of this configuration, this white paper demonstrates how to create a Connection Manager profile that automatically requests and installs a certificate for an L2TP/IPSec connection. The profile also installs a quarantine agent and installs and runs a custom quarantine script that checks for the presence of a required file and takes appropriate action based on its presence or absence.
    • Supported Operating System

      Windows Server 2003

        Microsoft Word or Word Viewer
        1. Click the Download button on this page to start the download.
        2. Do one of the following:
          • To start the installation immediately, click Open or Run this program from its current location.
          • To copy the download to your computer for installation at a later time, click Save or Save this program to disk.

    Popular downloads

    Loading your results, please wait...

    Free PC updates

    • Security patches
    • Software updates
    • Service packs
    • Hardware drivers

    Microsoft suggests

    Download a free trial of Windows Server 2012 R2.
    Windows Server 2012 R2 free trial
    Experience the new and enhanced capabilities.
    Free trial