How to Configure Network Policy and Access Services in Server 2022

Posted on 20th June 2023

Network Policy and Access Services (NPAS) is a server role in Windows Server 2022 that provides a centralized location for managing network access control. NPAS includes features such as the Network Policy Server (NPS), the Host Credential Authorization Protocol (HCAP), and the Remote Authentication Dial-In User Service (RADIUS) server.

In this article, we will show you how to configure Network Policy and Access Services in Windows Server 2022.

We will cover the following topics:

1. Installing Network Policy and Access Services

2. Configuring Network Policy Server

3. Configuring RADIUS Client

4. Testing Network Policy and Access Services

Installing Network Policy and Access Services

Network Policy and Access Services can be installed using the Server Manager or PowerShell.

To install Network Policy and Access Services using the Server Manager:

1. Open the Server Manager.

2. Click on “Add roles and features”.

3. Select “Role-based or feature-based installation” and click “Next”.

4. Select the server you want to install Network Policy and Access Services on and click “Next”.

5. Select “Network Policy and Access Services” and click “Next”.

6. Click “Install” to install Network Policy and Access Services.

To install Network Policy and Access Services using PowerShell:

1. Open PowerShell as an administrator.

2. Run the following cmdlet:

Install-WindowsFeature -Name NPAS -IncludeManagementTools

Configuring Network Policy Server

After installing Network Policy and Access Services, you need to configure the Network Policy Server (NPS).

To configure the Network Policy Server:

1. Open the NPS console.

2. Click on “NPS (Local)”.

3. Click on “Policies”.

4. Double-click on “Network Policies”.

5. Right-click on “Network Policies” and select “New”.

6. Enter a name and description for the policy.

7. Select the type of policy you want to create.

8. Configure the conditions for the policy.

9. Configure the settings for the policy.

10. Configure the authentication methods for the policy.

11. Click “OK” to save the policy.

Configuring RADIUS Client

After configuring the Network Policy Server, you need to configure the RADIUS client.

To configure the RADIUS client:

1. Open the NPS console.

2. Click on “NPS (Local)”.

3. Click on “Clients”.

4. Right-click on “Clients” and select “New”.

5. Enter a name and description for the client.

6. Enter the IP address or hostname of the client.

7. Select the type of client.

8. Enter the shared secret for the client.

9. Click “OK” to save the client.

Testing Network Policy and Access Services

After configuring Network Policy and Access Services, you can test it by trying to connect to the network using a RADIUS client.

To test Network Policy and Access Services:

1. Open the NPS console.

2. Click on “NPS (Local)”.

3. Click on “Monitoring”.

4. Click on “Logs”.

5. Select the type of log you want to view.

6. Select the date range for the log.

7. Click “Apply” to view the log.

Overview

Network Policy and Access Services (NPAS) in Server 2022 provides a set of tools to simplify the deployment and management of secure network access. In particular, NPAS provides a centralized management console and a set of Rule Groups that can be used to control access to network resources.

Configuring NPAS

To configure NPAS, open the Server Manager Console and select the “Network Policy and Access Services” role from the list of roles.

Once the role has been selected, click on the “Configure NPAS” link in the “Overview” section.

In the “Configure NPAS” dialog, select the “Enable Network Policy and Access Services” checkbox and click on the “OK” button.

Creating a Rule Group

To create a Rule Group, open the Network Policy and Access Services console and select the “Rule Groups” node.

In the “Actions” pane, click on the “Create Rule Group” link.

In the “Create Rule Group” dialog, enter a name for the Rule Group and click on the “OK” button.

Adding Rules to a Rule Group

To add rules to a Rule Group, open the Network Policy and Access Services console and select the “Rule Groups” node.

In the “Details” pane, select the Rule Group that you want to add rules to and click on the “Add Rule” link in the “Actions” pane.

In the “Add Rule” dialog, select the rule that you want to add from the list and click on the “OK” button.

Configuring Network Policies

To configure network policies, open the Network Policy and Access Services console and select the “Network Policies” node.

In the “Actions” pane, click on the “Create Network Policy” link.

In the “Create Network Policy” dialog, enter a name for the policy and click on the “Next” button.

On the “Specify Conditions” page, select the conditions that will trigger the policy and click on the “Next” button.

On the “Specify Settings” page, select the settings that you want to apply and click on the “Next” button.

On the “Specify Constraints” page, select the constraints that you want to apply and click on the “Next” button.

On the “Specify Authentication Methods” page, select the authentication methods that you want to use and click on the “Next” button.

On the “Completing the Create Network Policy Wizard” page, review the settings and click on the “Finish” button.

Assigning a Rule Group to a Network Policy

To assign a Rule Group to a Network Policy, open the Network Policy and Access Services console and select the “Network Policies” node.

In the “Details” pane, select the Network Policy that you want to assign a Rule Group to and click on the “Edit” link in the “Actions” pane.

In the “Edit Network Policy” dialog, select the “Rule Groups” tab and click on the “Add” button.

In the “Add Rule Group” dialog, select the Rule Group that you want to add and click on the “OK” button.

Configuring NPS Policies

Network Policy Server (NPS) is a service that allows you to manage network access policies. NPS policies can be used to control access to network resources based on the identity of the user or computer requesting access.

To configure NPS policies, open the NPS console and select the “Policies” node.

In the “Actions” pane, click on the “Create NPS Policy” link.

In the “Create NPS Policy” dialog, enter a name for the policy and click on the “Next” button.

On the “Policy Type” page, select the type of policy that you want to create and click on the “Next” button.

On the “Conditions” page, select the conditions that will trigger the policy and click on the “Next” button.

On the “Settings” page, select the settings that you want to apply and click on the “Next” button.

On the “Constraints” page, select the constraints that you want to apply and click on the “Next” button.

On the “Authentication Methods” page, select the authentication methods that you want to use and click on the “Next” button.

On the “Completing the Create NPS Policy Wizard” page, review the settings and click on the “Finish” button.

Assigning a Rule Group to an NPS Policy

To assign a Rule Group to an NPS Policy, open the NPS console and select the “Policies” node.

In the “Details” pane, select the NPS Policy that you want to assign a Rule Group to and click on the “Edit” link in the “Actions” pane.

In the “Edit NPS Policy” dialog, select the “Rule Groups” tab and click on the “Add” button.

In the “Add Rule Group” dialog, select the Rule Group that you want to add and click on the “OK” button.

Previous Post - Creating a Plugin Rollback and Restore System

Next Post - Exploring the Contacts App on the iPhone 14