Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [nps]

Network Policy Server, is a Microsoft RADIUS server for Windows Server 2008 and higher.

Microsoft's Network Policy Server is a server provided with and . It provides a variety of authentication services for VPN and connections.

121 questions
0
votes
1 answer

How to enable/disable data encryption using NPS policy editor in Windows Server 2008?

I'm configuring VPN users connection policy to my Windows Server 2008 using NPS Policy console. I found how to setup password encryption level: NPS (local) -> Connection Request Policy -> -> Settings -> Authentication Methods but…
abatishchev
  • 541
  • 1
  • 9
  • 31
0
votes
0 answers

How do I use NPS templates with different IP addresses?

When creating RADIUS client templates in Network Policy Server, the IP Address field is mandatory. So, when RADIUS clients using that template, they all get the same IP address. This seems wrong. Is there a way to use the template for clients with…
Fredrik Forséll
  • 1
  • 2
0
votes
0 answers

Certificates issue during RADIUS authentication using NPS server with PEAP MSCHAPv2

I am using NPS as a RADIUS server to authenticate some devices using PEAP MSCHAPv2. I have an issue during the server authentication, I am using a chain of trust certificates, with 1 server cert, 1 intermediate cert and 1 CA cert. The problem is…
Alexandre Rey
  • 1
  • 1
0
votes
0 answers

Windows NPS Logs - How to decode the class (25) attribute?

I'm wondering if there is a specific format for the "Class" attribute in Windows NPS logs. Specifically, I'm looking at logs from Windows Server 2019 which are under %SystemRoot%\System32\LogFiles\NPS and have the filename format of INYYMMDD.log…
Duck of Death
  • 1
  • 3
0
votes
2 answers

OTP before password with pam_radius and NPS

I have successfully configured pam_radius on a Ubuntu client so that users are asked for an OTP. The radius server is an NPS with Azure MFA extension. The OTP is checked against Azure. It works well, but I'd rather not send the user credentials to…
francisaugusto
  • 180
  • 10
0
votes
0 answers

Windows Server 2016 - Error EapHost when connecting to NPS from Cisco Access Point

I have a simple setup: Cisco Access Point (old one AIR-CAP3502I-E-K9), and it is connected to an older Cisco Switch, and to the switch, the same VLAN, I have a Windows 2016 server. The server has RADIUS, NPS, to authenticate clients connecting to…
Delpux
  • 1
  • 1
0
votes
0 answers

Securing Windows Server NPS/SSTP

Looking at our NPS logs I see we're getting hammered; some online actor is doing a brute force on various login names and passwords. In general this isn't an issue... yet. It doesn't appear that a breach has occurred (especially since it's not a…
MBender
  • 381
  • 2
  • 8
  • 25
0
votes
0 answers

Windows NPS refusing all network policies or ignoring correct credentials

I have a AD-joined Windows Server 2019 Standard with NPS installed and AD connected. When I try to RADIUS authenticate it always fails and this is unfixable so far. The RADIUS Clients are configured as well as the Connection Request Policies (only…
Philipp
  • 123
  • 1
  • 4
  • 13
0
votes
1 answer

Check MS-PEAP-Certificate by opening a connection (using Powershell or any other environment)

We are running an NPS-Server on Windows Server 2016 that serves as a Radius-Server for our wifi-network. A few days ago, all clients lost the connection because the validity of the certificate in use for the MS-PEAP-Protocol ended. Now we would like…
Andreas
  • 393
  • 5
  • 11
0
votes
1 answer

802.1x Wireless with certificates for AADJ/Intune devices without user affinity

I can setup certificate distribution and wireless profiles in Intune for devices with user affinity and this works fine. The user account is synchronised with our on site AD server and NPS has an account to use for permissions. However for…
John Sayce
  • 7
  • 4
0
votes
1 answer

NPS Radius Configuration EAP-Ms-Chapv2

I'm tryng to fix my Microsoft Server 2016 Network Policy Server configuration as radius server, with PEAP-MSChapv2. As well known some modern devices are not able to "not validate" server certificate because this is option is too weak and had been…
mnet
  • 11
  • 4
0
votes
1 answer

On Premise NPS server check computer account in Azure AD

I've got a Windows based NPS Radius server for authenticating my wireless clients based on device certificates (supplied by my internal CA). In my NPS network policy I have set conditions to grant access only when that the computer is a member of…
Martijn Balink
  • 3
  • 1
0
votes
1 answer

Failed To Authenticate To NPS Server

I am running an NPS Server on my Windows Server 2019 of my network. I use it to authenticate into my Cisco C9300 switches as an administrator to work on them. Recently I am unable to login as it says I am not authenticated. Here is a copy of the NPS…
JukEboX
  • 815
  • 4
  • 17
  • 46
0
votes
2 answers

Radius Authentication error between Active Directory NPS - Aruba 2930f

I am trying to configure Radius authentification using NPS backend. I have configured both ends but it does not seem to work.I am not sure if this is even correct. Kindly help. NPS Config: I have added my switch info under Radius Clients by giving…
Shruthi
  • 101
  • 1
0
votes
1 answer

Obtaining IP Address when Using NPS/RADIUS with existing lease from Windows DHCP

Problem: I have DHCP clients on a Windows AD network contoso.local, that often can't get an IP address after successfully authenticating over the RADIUS/NPS Server. I found that if the device has an existing lease from another VLAN or Subnet than…
Kevin
  • 1
  • 2
1 2 3
8
9