Microsoft Network Policy Server (NPS)

This management pack monitors the Network Policy and Access server (NPS) role on Windows Server 2008/2012 (R2).

  • 1.0.1.84 – Created a custom data source module to consolidate repeating event based on the “Trigger on Count, Sliding” module. The following rule is configured with the custom data source: “NPS: Authentication failed and the user was denied access”
  • 1.0.1.86 – Changed the “Network Policy Servers Discovery” back to discover only Server 2008 (R2) servers and renamed the discovery to “Network Policy Servers 2008 Discovery”. Added a new discovery “Network Policy Servers 2012 Discovery” to discover NPS on Server 2012 (R2).
    (Note: The MP is not tested by me on a 2012 NPS Server)

Discovery

The first discovery is targeted to all Windows Server to determine if NPS role is installed or not. The discovery checks for existence of registry key HKLM\System\CurrentControlSet\Services\IAS.

Scripted configuration discovery

If the NPS role is installed there are 4 scripted discoveries to discover the configuration:

  • Network Policy Server Client Configuration Discovery (netsh nps show client)
  • Network Policy Server Connection Request Policy Configuration (netsh nps show crp)
  • Network Policy Server Connection Network Policy Configuration (netsh nps show np)
  • Network Policy Server Log Configuration Discovery

4 thoughts on “Microsoft Network Policy Server (NPS)

  1. Victor Meyer

    Hi Bas.

    Thanks for putting this update online.

    First time I have used your MP and it looks absolutely fantastic. Excellent work.

    I can confirm that your updated MP is discovering my 2012 R2 Update 1 Datacentre Edition NPS boxes in SCOM 2012 R2 CU2.

    Much appreciated.

  2. Marcel Seger

    Hi Bas,

     

    Thank your for this perfect MP. I used it for about 2 years now, but now i upgraded my NPS to Windows Server 2016.

     

    Is it possible to update this MP ?

     

    Best Regards.

  3. Bas Post author

    Hi Marcel,

    Unfortunately I don’t have access to a scom environment anymore to update the MP.

    The source code is in the download file so if you find someone that have some scom dev knowledge it would be easy to make it work on server 2016.

    Regards,

    Bas

     

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.