Installing the Network Policy Server role
Published: November 15, 2009
Updated: February 1, 2011
Applies To: Forefront Threat Management Gateway (TMG)
Network Policy Server (NPS) is the Microsoft implementation of a Remote Authentication Dial-in User Service (RADIUS) server and proxy in Windows Server 2008. NPS is the replacement for Internet Authentication Service in Windows Server 2003.
As a RADIUS server, NPS performs centralized connection authentication, authorization, and accounting for many types of network access, including wireless and virtual private network (VPN) connections. As a RADIUS proxy, NPS forwards authentication and accounting messages to other RADIUS servers. NPS also acts as a health evaluation server for Network Access Protection (NAP).
NPS is a role service of the Network Policy and Access Services (NPAS) server role. Other role services of NPAS are the Routing and Remote Access service, Health Registration Authority, and Host Credential Authorization Protocol.
After you install NPS, you can administer it as follows:
Locally, by using the Microsoft Management Console (MMC) snap-in, the static NPS console in Administrative Tools, or the network shell (Netsh) commands for NPS
From a remote NPS server, by using the MMC snap-in, the Netsh commands for NPS, or Remote Desktop Connection
From a remote workstation, by using Remote Desktop Connection
The following procedure provides instructions on installing the Network Policy Server role.
To install the Network Policy Server role
Click Start, click Run, type CompMgmtLauncher, and then press ENTER.
In the Server Manager window, under Roles Summary, click Add Roles, and then click Next.
Select the Network Policy and Access Services check box, and then click Next twice.
Select the Network Policy Server check box, click Next, and then click Install.
Verify the installation was successful, and then click Close.
In the Server Manager window, click Close.