Basic Question on NPS Deployment

Brass Contributor

I am deploying NPS on a 2012R2 AD Domain Controller to use for authenticating VPN clients from a Cisco ASA. I installed the NPS role, and imported a configuration that I got from an old IAS server. It seems to be working fine, but I have a couple questions;


1. Since I have NPS installed on a domain controller, do I still need to do the "Register in Active Directory" thing? I have not done that yet as I thought that would only be required when running on a member server... but I want to confirm?


2. On the NPS server properties (general tab), I have selected to have both rejected and successful authentication requests recorded in the event log (which I believe is the default), however I only see failed requests (Event ID 6273). Is there something else I need to do? These are in the Server Roles event log for "Network Policy and Access Services"



1 Reply
+ System - Provider [ Name] Microsoft-Windows-Security-Auditing [ Guid] {54849625-5478-4994-A5BA-3E3B0328C30D} EventID 6273 Version 1 Level 0 Task 12552 Opcode 0 Keywords 0x8010000000000000 - TimeCreated [ SystemTime] 2022-07-21T06:30:11.292717300Z EventRecordID 1284012869 Correlation - Execution [ ProcessID] 612 [ ThreadID] 8364 Channel Security Computer Security - EventData SubjectUserSid S-1-0-0 SubjectUserName kuganeswaran.k SubjectDomainName JOSSG FullyQualifiedSubjectUserName JOSSG\kuganeswaran.k SubjectMachineSID S-1-0-0 SubjectMachineName - FullyQualifiedSubjectMachineName - MachineInventory - CalledStationID 001A1E0462F8 CallingStationID 683E26738421 NASIPv4Address NASIPv6Address - NASIdentifier NASPortType…I have the same issue and kindly advise please