Authenticate with Azure MFA NPS extension

rubymiaou

3/22/23, 8:26 AM

On a custom software (that act like a RADIUS client), I want to authenticate with MFA on my Azure AD.

I follow the guide https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-nps-extension I set up ADDS with Azure AD P2, create an account to link the NPS extension and a user account with MFA enabled. I install a Windows Server 2019 and join the domain, install NPS role (configured with IP and shared secret of RADIUS client) and NPS extension. All my VM are hosted in Azure, in the same network group.

In my RADIUS client, I declare the NPS server and then I attempt to log in. I see (with Wireshark) the correct RADIUS request arriving to my NPS server but nothing happens. There is no log in NPS log directory nor in NPS extension event viewer (I set VERBOSE_LOG to TRUE).

What am I missing ? How could I get more logs to debug ? Thanks

107

0 + 0

nps

azure-mfa

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Authenticate with Azure MFA NPS extension

TH: รับรองความถูกต้องด้วยส่วนขยาย Azure MFA NPS

RO: Autentificați-vă cu extensia Azure MFA NPS

RU: Проверка подлинности с помощью расширения Azure MFA NPS

VI: Xác thực bằng tiện ích mở rộng Azure MFA NPS

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.