4.0 Configuring the NetIQ NPS Plug-in

To configure the NetIQ NPS Plug-in, perform the following steps:

  1. Create a NPS endpoint in Advanced Authentication server and keep the endpoint ID and secret. For more details, see Managing Endpoints.

  2. Navigate to C:\ProgramData\NetIQ\NPSPlugin.

  3. Open config.properties file.

  4. Specify the following details:

    • Specify the domain name or IP address in discovery.host.

      For example, discovery.host: or discovery.host: auth2.mycompany.local.

    • Specify a port number (optional parameter) for the client-server interaction in discovery.port.

      For example, discovery.port: 443.

    • Specify the ID from the NPS endpoint in endpoint_id.

      For example, endpoint_id: 6e1a79cee82311ea9e300242ac110003.

    • Specify the Secret from the NPS endpoint in endpoint_secret.

      For example, endpoint_secret: 3WcDvM9ddwQUF7pqARvfZqyMEGOqF022

    • (Only in case of multitenancy) Specify the tenant in tenant

      For example, tenant: Company

      This parameter is not required since Advanced Authentication 6.3 Service Pack 5.

  5. Click Save.

  6. Restart NPS Service.

You can configure RADIUS rules in the RADIUS Options to set up the required behavior.

NOTE:Because of keeping the authentication state in memory, the NPS Plug-in does not support load balancing. Most RADIUS Clients can be configured to use multiple RADIUS Servers and the RADIUS Clients can switch to another RADIUS Server if the first RADIUS Server does not operate.