Add a Condition to a Network Policy

  • Article

Applies To: Windows Server 2008

Add a condition to a network policy

After creating a network policy with the New Network Policy Wizard or by creating a custom policy, you can specify the conditions that connection requests must have in order to match the network policy; if the conditions configured in the policy match the connection request, Network Policy Server (NPS) applies the settings designated in the network policy to the connection.

With this procedure you can configure conditions in the groups Connection Properties, Day and Time Restrictions, Gateway, Groups, Network Access Protection, and RADIUS Client Properties.

Important

Before you configure the value for a condition in a network policy, you must know the value that the condition must have. For example, if you want to configure the NAS IPv6 Address condition, you must know the Internet Protocol version 6 (IPv6) address of the network access server, or RADIUS client, that creates the Access-Request messages received by NPS. In addition, there are different methods for configuring condition values, depending on the type of condition or type of value to be configured. Many conditions, such as the Connection Properties group of conditions, provide a list from which you can select one or more values by selecting check boxes. The Day and Time Restrictions condition provides an Edit button that allows you to configure restrictions in a new dialog box. Other conditions allow you to enter values in other ways.

Membership in Domain Admins, or equivalent, is the minimum required to complete this procedure.

To add a condition to a network policy using the Windows interface

  1. Open the Network Policy Server (NPS) Microsoft Management Console (MMC) snap-in, double-click Policies, and then click Network Policies.

  2. In the upper details pane, double-click the network policy to which you want to add a condition, and then click the Conditions tab.

  3. In Available Conditions, browse to the appropriate conditions group, and then click the condition you want to add to the policy.

  4. In the details pane, configure the value for the condition.

  5. Click Add, and then click OK.

Warning

If you do not click Add, the condition is not added to the network policy. You must click Add to complete this procedure.