locked
NPS server network policy settings. RRS feed

  • Question

  • Hello, in my domain environment, alone WINDOWS2008R2 build a NPS server is responsible for 802.1X authentication, has been basically successful. However, configuring the network Group Policy, found restrictions on the authentication object only "or" this relationship, there is no "both" This multi-logic relationships. And does not find the relevant documentation to reference. Does the IAS can be set similar to the previous "both" This multi-logic relations in NPS network Group Policy do? Or is there an alternative to it?
    • Edited by Ken_Qin Wednesday, September 17, 2014 6:56 AM
    Wednesday, September 17, 2014 6:02 AM

Answers

  • Hi Ken,

    The Conditions in network policy is ‘and’ relationship. When the connection request match all conditions of the policy, the connection request match the policy. When multiple network policies are configured in NPS, if it doesn’t match the policy, then NPS will try the next network policy in the policy list. So the relationship between different network policies is ‘or’ relationship. The conditions in the same network policy is ‘and’ relationship.

    Each network policy have four categories of properties: Overview, Conditions, Constraints, Settings. It can be viewed as rules. Each rule has a set of conditions and settings. NPS compares the conditions of the rule to the properties of connection requests. If a match occurs between the rule and the connection request, the settings defined in the rule are applied to the connection.

    To learn more details about Network Policy properties, please refer to the link below.

    Network Policies

    http://technet.microsoft.com/en-us/library/dd197530(v=WS.10).aspx

    Best Regards,

    Tina

    • Proposed as answer by Elke Stangl Friday, September 19, 2014 8:03 AM
    • Marked as answer by Steven_Lee0510 Thursday, October 9, 2014 1:26 AM
    Friday, September 19, 2014 12:56 AM