Hi All,
I have installed the Windows Server 2012 NPS Server (Hostname - NPS1) and configured NAP with IPSec.
For Configuration Manager 2012 Primary Site Server (Site Code - AGP) I have installed the SHVP on NPS1.
I have followed the TechNet documentation to configure NAP with SCCM. Windows Firewall policy is working fine.
I have Enable the NAP evaluation for Two Security Updates for Windows 7 from SCCM console.
In my environment, I have found that when Updates are installed by ConfigMgr then NAPSTAT shows the Full Network Access.
Then I have uninstall one Update manually, and restart the system. I have found that NAPSTAT still shows the Full Network Access on the Client.
I have seen the ccmcca and smssha logs but no error.
One thing I have found that Update which I have uninstalled manually is not showing in Control Panel --> Programs and Features BUT UpdatesHandler.log is showing the same update as Installed (not missing).
How can I remediate the machines using NAP and SCCM? Am I missing something?
I have installed the Windows Server 2012 NPS Server (Hostname - NPS1) and configured NAP with IPSec.
For Configuration Manager 2012 Primary Site Server (Site Code - AGP) I have installed the SHVP on NPS1.
I have followed the TechNet documentation to configure NAP with SCCM. Windows Firewall policy is working fine.
I have Enable the NAP evaluation for Two Security Updates for Windows 7 from SCCM console.
In my environment, I have found that when Updates are installed by ConfigMgr then NAPSTAT shows the Full Network Access.
Then I have uninstall one Update manually, and restart the system. I have found that NAPSTAT still shows the Full Network Access on the Client.
I have seen the ccmcca and smssha logs but no error.
One thing I have found that Update which I have uninstalled manually is not showing in Control Panel --> Programs and Features BUT UpdatesHandler.log is showing the same update as Installed (not missing).
How can I remediate the machines using NAP and SCCM? Am I missing something?
Thanks & Regards, Kedar