Network Access Protection is a new platform to limit the access of connecting computers until they are compliant with system health requirements. Network Access Protection includes client and server components. Administrators can configure IPsec Enforcement, 802.1X Enforcement, VPN Enforcement, DHCP Enforcement, or all of them, depending on their network needs. Network Access Protection provides an infrastructure and an API, which vendors and software developers can use to build their own health requirements validation and network access limitation components that are compatible with Network Access Protection. Network Access Protection is not designed to secure a network from malicious users. It is designed to help administrators maintain the health of the computers on the network, which in turns helps maintain the network?s overall integrity. For example, if a computer has all the software and configurations that the health policy requires, the computer is considered compliant, and it will be granted the appropriate access to the network. Network Access Protection does not prevent an authorized user with a compliant computer from uploading a malicious program to the network or engaging in other inappropriate behavior.