NPS Server Registration in Active Directory

Applies To: Windows Server 2008, Windows Server 2008 R2

To enable Network Policy Server (NPS) to read user account information in Active Directory Domain Services (AD DS) during the authentication and authorization processes, you must register the server running NPS in AD DS.

The NPS server is registered in AD DS when it is added as a member of the RAS and IAS Servers security group.

You can add the NPS server to this AD DS group in the local domain using the Register server in Active Directory command on the Action menu of the NPS console or NPS Microsoft Management Console (MMC) snap-in.

To add the NPS server to the RAS and IAS Servers security group in a remote domain or forest, open the Active Directory Users and Computers MMC snap-in, browse to the security group, and then add the NPS server as a member.