How to let local AD server to can view the device group from Entra (AAD)

2024-03-12T17:14:16.0566667+00:00

Hi how are you !

Do anyone know how to let NPS (Network policy Server) to add the machine group which is from Entra -- in other words ( how to let local AD To see device Group from Entra

User's image

User's image

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,823 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,394 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Givary-MSFT 27,486 Reputation points Microsoft Employee
    2024-03-13T10:51:05.6066667+00:00

    @Joseph (Chilin) Wu / FPC Management Center Thank you for reaching out to us, this ask is not possible to add the machine/device group which is from Entra in NPS console - Conditions (tab) - Machine groups.

    Groups conditions specify user or computer groups that you configure in Active Directory Domain Services (AD DS) not in Entra, more over the NPS server is part of on-premise network.

    Reference - https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731220(v=ws.10)?redirectedfrom=MSDN

    Any specific reason you have to add device group in the above mentioned section?

    Let me know if you have any further questions, feel free to post back.