NPS Knowledge Transfer document:

Similar documents

Using Internet or Windows Explorer to Upload Your Site

Cox Managed CPE Services. RADIUS Authentication for AnyConnect VPN Version 1.3 [Draft]

Configuring a Windows 2003 Server for IAS

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

How To Configure Windows Server 2008 as a RADIUS Server with MS-CHAP v2 Authentication

VPN Overview. The path for wireless VPN users

BACKUP & RESTORE (FILE SYSTEM)

Microsoft IAS Configuration for RADIUS Authorization

Palo Alto Networks GlobalProtect VPN configuration for SMS PASSCODE SMS PASSCODE 2015

Configuring Global Protect SSL VPN with a user-defined port

Configuring Microsoft RADIUS Server and Gx000 Authentication. Configuration Notes. Revision 1.0 February 6, 2003

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

How to Copy A SQL Database SQL Server Express (Making a History Company)

Configure your firewall for administrative access via RADIUS authentication

Browser-based Support Console

Installation Manual (MSI Version)

How To Set Up Wireless Network Security Part 1: WEP Part 2: WPA-PSK Part 3-1: RADIUS Server Installation Part 3-2: 802.1x-TLS Part 3-3: WPA

ECA IIS Instructions. January 2005

Kerberos authentication between multiple domains may fail on LiveCycle Rights Management ES 8.2.1

Lab 5 Managing Access to Shared Folders

HOW TO SILENTLY INSTALL CLOUD LINK REMOTELY WITHOUT SUPERVISION

Using Microsoft Expression Web to Upload Your Site

4cast Client Specification and Installation

How to use FTP Commander

Promap V4 ActiveX MSI File

Vantage RADIUS 50. Quick Start Guide Version 1.0 3/2005

Universal Management Service 2015

Internet Authentication Service (IAS) Operations Guide

Quick Start Guide. User Manual. 1 March 2012

Management Authentication using Windows IAS as a Radius Server

Using Windows 2008 RADIUS Authentication with Tripp Lite SNMPWEBCARD

FortiGate RADIUS Single Sign-On (RSSO) with Windows Server 2008 Network Policy Server (NPS) VERSION 5.2.3

RSA SecurID Ready Implementation Guide

Z-Term V4 Administration Guide

HIC.SOAP Network User Instructions last updated June 22, :39 AM

MONITORING PERFORMANCE IN WINDOWS 7

Windows Clients and GoPrint Print Queues

Autograph 3.3 Network Installation

Deployment of IEEE 802.1X for Wired Networks Using Microsoft Windows

Printer Connection Manager

Customer Tips. Xerox Network Scanning HTTP/HTTPS Configuration using Microsoft IIS. for the user. Purpose. Background

To install the SMTP service:

Alert Notification of Critical Results (ANCR) Public Domain Deployment Instructions

Automating client deployment

VERITAS Backup Exec 9.1 for Windows Servers Quick Installation Guide

HOTPin Integration Guide: DirectAccess

How To Backup In Cisco Uk Central And Cisco Cusd (Cisco) Cusm (Custodian) (Cusd) (Uk) (Usd).Com) (Ucs) (Cyse

Setting Up SSL on IIS6 for MEGA Advisor

Active Directory integration with CloudByte ElastiStor

How to Create a Delegated Administrator User Role / To create a Delegated Administrator user role Page 1

Backup and Restore with 3 rd Party Applications

Buffalo Technology: Migrating your data to Windows Storage Server 2012 R2

Installing GS Analyze version 8.5

RSA SecurID Ready Implementation Guide

SAM 8.0 Backup and Restore Guide. SafeNet Integration Guide

SECURE MOBILE ACCESS MODULE USER GUIDE EFT 2013

Setting up Sharp MX-Color Imagers for Inbound Fax Routing to or Network Folder

Connecting to LRDC Fileserver Remotely Using Windows XP & SRemote VPN

How to Backup XenServer VM with VirtualIQ

For Active Directory Installation Guide

Introduction. Before you begin. Installing efax from our CD-ROM. Installing efax after downloading from the internet

Amira License Manager

Citrix Client Installation

AdminToys Suite. Installation & Setup Guide

DSView 4 Management Software Transition Technical Bulletin

How to protect, restore and recover SQL 2005 and SQL 2008 Databases

Instructions: Configuring Outlook 2003 with Exchange 2010 on the FIUMail

Installation Guide - Client. Rev 1.5.0

FEI Avizo License Management

Step-by-step installation guide for monitoring untrusted servers using Operations Manager ( Part 3 of 3)

Installation Guide. SafeNet Authentication Service

AXIS 70U - Using Scan-to-File

ACTIVE DIRECTORY DEPLOYMENT

Montefiore Portal Quick Reference Guide

Installing RMFT on an MS Cluster

Distributing SMS v2.0

EMC Celerra Network Server

Insight Video Net. LLC. CMS 2.0. Quick Installation Guide

DigitalPersona Pro Server for Active Directory v4.x Quick Start Installation Guide

Using Group Policy to Manage and Enforce ACL on VNX for File P/N REV A01 February 2011

Configuration of Microsoft Time Server

Active Directory Software Deployment

HRC Advanced Citrix Troubleshooting Guide. Remove all Citrix Instances from the Registry

Cloud Services for Backup Exec. Planning and Deployment Guide

User Guide. Version 3.2. Copyright Snow Software AB. All rights reserved.

Configure Backup Server for Cisco Unified Communications Manager

Oracle WebLogic Server

DIRECTORY PASSWORD V1.2 Quick Start Guide

SysPatrol - Server Security Monitor

Riva GroupWise for Active Directory - Admin Guide

ProjectWise Explorer V8i User Manual for Subconsultants & Team Members

PaperStream Connect. Setup Guide. Version Copyright Fujitsu

Snagit 12. Snagit Enterprise Installation. Version May TechSmith Corporation

CA Nimsoft Service Desk

ADFS for. LogMeIn and join.me authentication

How To - Implement Clientless Single Sign On Authentication with Active Directory

Owner of the content within this article is Written by Marc Grote

Stonesoft Firewall/VPN 5.4 Windows Server 2008 R2

Microsoft IAS and NPS Agent Configuration Guide

Transcription:

NPS Knowledge Transfer document: Note this document is a complete document that includes basic/advance & expert level steps. Enayat Meer Install NPS role on primary server Add features 1

2

3

Register NPS in Active directory 4

5

A certificate was installed on NPS server at this point. This is a sample certificate from my own test environment using meer.com domain. I installed AD root CA (sample screen test environment). We already have available certificate in production NPS servers (installed already) Adding radius client 6

7

Let s go and create a shared key template for wireless and wired devices first at this point 8

9

Now I am going back to edit radius client for shared secret using template 10

11

12

Adding vendor from advance tab 13

14

Creating Network Policy 15

16

17

18

I am adding domain users for demo purposes now but, this group should be customized global security group as mentioned later in this document 19

20

Grant access or deny access as needed Use configuratin as shown below for authentaction mehtods 21

22

Edit service type to login 23

24

Add vendor and previllage 25

26

Click on Finish 27

28

Configure log file path 29

30

Install NPS on secondary server now and register in Active Directory 31

32

On the source NPS server such as 39Radius, open Command Prompt, type netsh, and then press Enter. At the netsh prompt, type nps, and then press Enter (sample command is shown in these both screens) 33

OR filename could be Config.xml as hown below 34

This stores configuration settings (including registry settings) in an XML file. The path can be relative or absolute, or it can be a Universal Naming Convention (UNC) path. After you press Enter, a message appears indicating whether the export to file was successful. Copy the file you created to the destination NPS server. At a command prompt on the destination NPS server, type netsh nps import filename="c:\config.xml" and then press Enter. A message appears indicating whether the import from the XML file was successful. Make sure exported file is copied at target location. Active Directory & Group Policy configuration: Sample global security group with one member that can be a condition as I configured domain users group earlier 35

Create a test user and add test user as member of NPSUsers group and follow as pointed in screens below. 36

These are group policy screens pointing action with arrows 37

38

39

40

41

42

43

44

Remote Radisu Server Groups for load balance 45

46

Thank You: Enayat Meer 47