Strong authentication and a few Windows Server 2008 configurations can result in big improvements in an organization’s overall security. This Search Security feature discusses how to improve wireless and wired network security configurations using four different Windows Server 2008 access control techniques.
“Directory authentication can be used, through Windows AD, for SSL-VPN clients connecting remotely. The integration of the Microsoft NAP component can extend remote authentication to include a health or security posture as part of an intelligent decision process. Organizations with third-party SSL VPN solutions can leverage Windows AD directly in most cases, or through standard RADIUS communications provided by Windows NPS (Network Policy Server). Network managers should always pay extremely close attention to all accounts and privileges attached to any remote access solution to protect against insider attacks or malicious use by unauthorized users who have somehow compromised a legitimate account.”