![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 63%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPD%3C/text%3E%3C/svg%3E)
25,148 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
It sounds like there is something missing in your NPS server configuration. Please confirm that you have configured all of your NPS server settings to match what's in the document in the "Configure NPS Components on Remote Desktop Gateway" and "Configure NPS on the server where the NPS extension is installed" sections. https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-nps-extension-rdg#configure-nps-components-on-remote-desktop-gateway
It is also worth noting that two-way SMS and OTP MFA are not guaranteed for the NPS extension due to multiple factors that can affect the service, and it's recommended to stick to app authentication or phone call. If the users are configured for two-way SMS that may be related to the issue.
To troubleshoot what may be causing the problem you can also check the NPS server event logs.
