Your network consists of one Active Directory domain and one IP subnet.
All servers run Windows Server 2008. All client computers run Windows Vista, Windows XP Professional, and Windows 2000 Professional.
The servers are configured as shown in the following table:
Server2 is configured to support Network Access Protection (NAP) by using IPsec, DHCP, and 802.1x enforcement methods.
Users from a partner company have computers that are not joined to the domain. The computers successfully connect to the network.
You need to ensure that only computers that are joined to the domain can access network resources on the domain.
What should you do?
A. Configure all DHCP scopes on Server1 to enable NAP.
B. Configure all network switches to require 802.1x authentication.
C. Create a Group Policy object (GPO) and link it to the domain. In the GPO, enable a secure server IPsec policy on all member servers in the domain.
D. Create a Group Policy object (GPO) and link it to the domain. In the GPO, enable a NAP enforcement client for IPsec communications on all client computers in the domain.
