Hi there,
The underlying issue might be that your Windows server has been configured in such a way so that TLS version 1.0 and 1.1 were disabled, only TLS 1.2 is allowed. However, NPS might still be defaulting to TLS version 1.0.
It might also be due to an invalid PKI certificate or NAP issue.
Here is an article as well for Troubleshooting NAP
https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd348461(v=ws.10)?redirectedfrom=MSDN
Hope this resolves your Query!!
---------------------------------------------------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept it as an answer-