Microsoft Internet Security and Acceleration Server 2004 SDK

FPCVpnQuarantineSettings

The FPCVpnQuarantineSettings object defines the virtual private network (VPN) quarantine settings.

The FPCVpnQuarantineSettings object is typically accessed through the QuarantineSettings property of an FPCVpnConfiguration object.

Click here to see the ISA Server object hierarchy.

A VPN quarantine uses the Network Access Quarantine Control feature of Windows Server 2003 to prevent remote VPN clients from obtaining normal remote access until the configuration of their systems has been examined by a server-provided script and validated as meeting the requirements of the organization's network policies. The connection to a remote VPN client can be closed if the time-out period elapses before the configuration is validated.

The clearing of VPN clients from a quarantine can be enabled by installing Remote Access Quarantine Agent (Rqs.exe) on the ISA Server computer and the Remote Access Quarantine Client utility (Rqc.exe) on VPN clients. Both of these utilities are available in the Microsoft Windows Server 2003 Resource Kit. Additional steps must also be performed. For detailed instructions on implementing the clearing of VPN clients from a quarantine, see VPN Roaming Clients in ISA Server 2004.

Alternatively, you can create a custom listener component that listens for messages from a matching notifier component running on quarantine-compatible remote access clients. These messages indicate that the scripts have been run successfully. Then your listening component can use the MprAdminConnectionRemoveQuarantine function to remove the quarantine restrictions from the remote access connections.

Methods

The FPCVpnQuarantineSettings object defines the following methods.

Method Description
Refresh Recursively reads the values of all of the object's properties from persistent storage, discarding any changes that have not been saved.
Save Writes the current values of all of the object's properties, including the properties of its subobjects and their elements (for collections), to persistent storage.

Properties

The FPCVpnQuarantineSettings object has the following properties.

Property Description
QuarantineMode Gets or sets a value from the FpcVpnQuarantineMode enumerated type that specifies whether the VPN quarantine is enabled or disabled and whether the ISA Server policy or the Remote Authentication Dial-in User Service (RADIUS) policy is used to validate the configuration of remote VPN clients.
QuarantineTimeout Gets or sets the time, in seconds, that a connection can remain in the restricted state before being closed.
QuarantineTimeoutEnabled Gets or sets a Boolean value that indicates whether the VPN quarantine time-out period is enabled.
UserSetsExcluded Gets an FPCRefs collection that contains references to the FPCUserSet collections defining the user sets to which the VPN quarantine is not applied.

Remarks

This object implements the IFPCVpnQuarantineSettings interface.

Requirements

Server: Requires Windows Server 2003 or Windows 2000.
Version: Requires Internet Security and Acceleration Server 2004.
Header: Declared in Msfpccom.idl.
Library: Use Microsoft Internet Security and Acceleration Server 2004 Administration Library.

See Also

COM Objects