@Indrek Hi,
Thank you for posting in Q&A!
This issue has been discussed before, however please kindly note that the goal "assign a dhcp address (several scopes on a 2019 MS DHCP) to an always on vpn user based on network policies on the NPS server" cannot be achieved.
You can refer to the early thread discussing the same issue for more details:
https://social.technet.microsoft.com/Forums/en-US/59c0605e-849b-4599-ab86-34dd575746bc/always-on-vpn-with-server-2019-nps-radius-auth-and-selectable-dhcp-subnet-selection-?forum=winserverNIS
Hope you have a nice day : )
Gloria
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
https://learn.microsoft.com/en-us/answers/articles/67444/email-notifications.html