Microsoft Network Policy Server

Geometry

Account Management and Log Data

RADIUS account management means logging on NPS. Options for the data logging destination include:

  • A SQL database
  • A text file on the local computer
  • Simultaneous logging in a SQL Server database and a local text file
  • Logging in a SQL Server database with text file logging for failover

You can configure account management requirements and authentication requirements in Accounting | Log File Properties . For example, in the Log File tab, you can specify the location of the logfiles, the file format used, and the interval at which new logfiles are created. If you want to use SQL Server logging, you need to configure the settings for SQL Server Logging Properties in the Accounting window.

Microsoft's NPS server provides numerous logging options, but unfortunately no evaluation tools are available by default. This deficiency is remedied by numerous third-party tools that evaluate logs in real time and offer graphical editing. One of the best-known tools is IAS Log Viewer [4] – do not be confused by the name: The viewer can also be used with NPS. IAS Log Viewer is available as a commercial download in Standard and Professional versions.

Conclusions

RADIUS systems are indispensable helpers in the professional IT environment for connecting various systems, as well as for secure authorization of users, computers, WiFi systems, and much more. Windows Server has long provided integrated support for RADIUS, and RADIUS servers are still in use today. Because the basic functions have not changed much for many Windows versions, you can still apply your previously acquired knowledge with confidence.

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy ADMIN Magazine

SINGLE ISSUES
 
SUBSCRIPTIONS
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

  • FreeRADIUS for WiFi Hotspots

    Tired of contending with shared passwords for wireless networks? Use WPA Enterprise and a FreeRADIUS server to set up a user password solution for wireless users.

  • FreeRADIUS for WiFi hotspots
    Tired of contending with shared passwords for wireless networks? Use WPA Enterprise and a FreeRADIUS server to set up a user password solution for wireless users.
  • DNS filtering with authentication
    Filtering HTTP connections and employing traditional proxy servers can protect users from web threats but also increase latency. DNS filters would be a better option, but they lacked authentication – until NxFilter came along.
  • Protect privileged accounts in AD
    Granular protection for highly privileged accounts is granted by the Protected Users group in Active Directory and Kerberos authentication policies.
  • Policy-based DNS in Windows Server 2016
    Inflexible DNS name resolution was solved in Windows Server 2016, thanks to policy-based DNS.
comments powered by Disqus