NPS Extension for Azure MFA failing to generate MFA prompt

elflaco 20 Reputation points
2025-01-06T10:55:09.58+00:00

Hi. We have signed up for the standard support plan in Azure and I raised a support request 18 days ago but have not received any responses. I also added a message to the ticket one week ago but did not receive a response.

Is this normal?

How do I go about receiving an update on the ticket?

Thanks.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes

Accepted answer
  1. Anonymous
    2025-01-08T12:24:01.3133333+00:00

    Hello elflaco,

    Thank you for connecting offline to discuss about your issue. 

    We see that you are looking to secure remote access to virtual machines that run in a Microsoft Entra Domain Services managed domain, using Remote Desktop Services (RDS) and Network Policy Server (NPS).  

    As discussed, there are two factors that affect which authentication methods are available with an NPS extension deployment: 

    The password encryption algorithm used between the RADIUS client (VPN, Netscaler server, or other) and the NPS servers. 

    PAP supports all the authentication methods of Microsoft Entra multifactor authentication in the cloud: phone call, one-way text message, mobile app notification, OATH hardware tokens, and mobile app verification code. 

    CHAPV2 and EAP support phone calls and mobile app notification. 

    The input methods that the client application (VPN, Netscaler server, or other) can handle. 

    The NPS Extension for Microsoft Entra multifactor authentication is available to customers with licenses for Microsoft Entra multifactor authentication (included with Microsoft Entra ID P1 and Premium P2 or Enterprise Mobility + Security). Consumption-based licenses for Microsoft Entra multifactor authentication, such as per user or per authentication licenses, aren't compatible with the NPS extension.  

    Sharing relevant document for reference:  https://learn.microsoft.com/en-us/entra/identity/authentication/howto-mfa-nps-extension#licenses

    Thanks & Best Regards

    Janaki Kota

    If your question has been solved, then you can click "Accept Answer", which may help members with similar questions find the answer easily. Thank you very much! 

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.