Configure A Microsoft NPS Server As A RADIUS Authentication Server

Configure an NPS server to use it as a RADIUS server to centralize all authentication functions across systems.

Create a RADIUS Client Configuration

View Connection Server acts as the RADIUS client. Open the NPS management console. Under RADIUS Clients and Servers, right-click RADIUS Clients and choose New. The New RADIUS Client window opens.

  • In the Settings tab, in the Addressfield type the View Connection ServerIP address.
  • Select Manual to manually type a shared secret
  • Type a secret value in the Shared Secret field and confirm it.

Note: The shared secret will also be used in View Connection Server settings.

  • Click OK.

Create a Connection Request Policy

The Connection Request Policy uses the current NPS server to handle authentication requests from the View Connection Server.

To configure the local NPS server by using the NPS console, click Start, click Administrative Tools, then click Network Policy Server. The NPS console opens.

  • In the Network Policy Server window, under the Policies menu right-click Connection Request Policies and choose New.

  • In the New Connection Request Policy window, set a Policy name, for example "ViewConnection."
  • Select Type of network access server and choose Unspecified.
  • Click Next.

  • In the Select condition window, choose NAS IPv4 Address and click Add.

  • The NAS IPv4 Address window appears. Enter the View Connection Server IP address and click OK.

  • The New Connection Request Policy window opens. Under Specify Connection Request Forwarding, in the Settings pane, choose Authentication.
  • Select Authenticate requests on this server.
  • Click Next.

  • Under Specify Authentication Methods, accept the default values and click Next.

Note: Do not select Overwrite network policy authentication settings.

In the Completing Connection Request Policy Wizard, accept the default configuration settings and click Finish to complete the connection policy setup.

Create a Network Policy

Create a network policy to define the network connection condition, constrain, and authentication method.

Click Start, click Administrative Tools, and click Network Policy Server.

The NPS console opens.

  • In the Network Policy Server window, under the Policies menu, right-click Network Policies and choose New.

  • In the New Network Policy window, set a Policy name.
  • Select Type of network access server and choose Unspecified.
  • Click Next.

  • In the Select Condition window, choose NAS IPv4 Address and click Add.

  • The NAS IPv4 Address window appears. Enter the View Connection Server IP address and click OK.

  • The New Network Policy window opens. Under Specify Access Permission, select Access granted and click Next.

  • In the Configure Authentication Methods section, under Less secure authentication methods, select MS-CHAP-v2 and MS-CHAP.Click Next.

  • Under Configure Constraints, accept the default values and click Next.

  • Under Configure Settings, accept the default values and click Next.

Review the settings and click finish to create the policy.

Note: You have the option to configure Accounting in the NPS server, however this is out of scope of this guide.

You have successfully configured a Microsoft NPS server as a RADIUS authentication server. You are now ready to configure a View Connection Server to use an NPS server as an authenticator.

Previous page

Next page