Thursday, December 06, 2012 8:27 PM
Hi, my boss asked me a question that I am trying to figure out. I have some low end experience with Microsoft's NPS.
We are thinking about getting a firewall in here that may not do VPN two-factor authentication natively. We are still waiting to here back if it does. We have an existing Cryptocard system my boss wants to use with VPN.
Is it possible that by using Windows NPS' Radius server that it could handle two factor authentication?
In this scenerio the new firewall would still handle the VPN and the firewall would think it is connecting to a normal Radius server for authentication but somehow the Microsoft Radius server or NPS would also connect to the Cryptocard system and the two-factor authentication would still happen.
We apparantly have a large investment in the Cryptocard hardware tokens and wish to still use them.
Any help would be appreciated.
Friday, December 07, 2012 6:58 AMModerator
Thanks for your post.
You can integrate Cryptocard with NPS for strong authentication. Hope the following article will help you on this issue.
CRYPTOCARD Protects :: Radius
BlackShield ID Agent for Microsoft IAS/NPS RADIUS Server Component
Please Note: Since the website is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
In addition, I would recommend that you contact the Crytocard support team for further support. Your understanding is appreciated.
TechNet Community Support
Friday, December 07, 2012 11:51 AM
Thanks for your help. I will read those again. I am still trying to get the terms straight. From my research on the net it seems that Strong Authentication has varying definations and some places use it interchangably with two-factor.
Could you explain why it is not two-factor authentication?