The Configuring RADIUS module provides you with the instruction and server hardware to develop your hands on skills in the defined topics. This module includes the following exercises:
- Install and Configure Network Policy Server
- Install and Configure Remote Access Server
- Configure the VPN Client
- Viewing the NPS Logs
Lab time: It will take approximately 1 hour to complete this lab.
The following exam objectives are covered in this lab:
- SY0-501 4.2: Given a scenario, install and configure identity and access services.
Exercise 1 - Install and Configure Network Policy Server
Network administrators deploy remote access servers (RAS) that give mobile users the capability to dial-up and connect to corporate resources like folders, files and applications. For scalability, network managers add more RAS servers and deploy a modem pool to accommodate more dial-in users. However, this infrastructure upgrade will require more resource to be spent for the hardware, long distance call charges and toll-free telephone service. A company may opt to outsource their remote access services to a third party to save on telephone charges but there is a security risk of entrusting and managing your dial-up user accounts to an external organization like Internet Service Providers (ISPs).
Fortunately, the problem of managing user accounts and security can be addressed with the use of virtual private networks and Remote Authentication Dial-in User Service (RADIUS). Virtual private networks (VPNs) makes use of an existing Internet connection to connect to corporate network resources. Therefore, a user can be located anywhere in the world and be able to gain access to network resources by using the Internet and then connecting to the VPN server. While RADIUS provides a centralized infrastructure for authentication of dial-in VPN users, authorization for access of network resources and count the number of minutes a dial-in user spends in a remote session.
In this exercise, you will install Network Policy Server (NPS) which is Microsoft’s implementation of the RADIUS protocol. You will not configure dial-up remote access server but instead install and set up a VPN server based on Microsoft’s Routing and Remote Access Services.
Exercise 2 - Install and Configure Remote Access Server
In this exercise, you will install and then set up Microsoft Routing and Remote Access Service which will provide the virtual private network (VPN) server.
Exercise 3 - Configure the VPN Client
After installing and configuring Routing and Remote Access in PLABDM01 server, you will now prepare a Windows 8.1 client to dial-in to the VPN server.
Exercise 4 - Viewing the NPS Logs
When Windows 8.1 connects to a VPN server, be it a successful or a failed logon, you can view the details of the VPN connection by reading the NPS logs using a third-party log reader.