Network Policy Server

Overview of the Network Policy Server technology.

To develop Network Policy Server, you need these headers:

For programming guidance for this technology, see:

Enumerations

Title Description
ACCOUNTINGPROPERTIES The values of the ACCOUNTINGPROPERTIES type enumerate properties that control what types of packets are logged and characteristics of the log file.
ATTRIBUTEFILTER The usage cases for the NPS dictionary attributes.
ATTRIBUTEID The ATTRIBUTEID enumeration type enumerates the RADIUS attributes supported by the SDO API.
ATTRIBUTEINFO The values of the ATTRIBUTEINFO type enumerate characteristics of a specified attribute.
ATTRIBUTEPROPERTIES The values of the ATTRIBUTEPROPERTIES type enumerate properties for a RADIUS dictionary attribute.
ATTRIBUTERESTRICTIONS The values of the ATTRIBUTERESTRICTIONS enumeration type specify restrictions on how a particular attribute can be used.
ATTRIBUTESYNTAX Each value from the ATTRIBUTESYNTAX enumeration type specifies a possible attribute syntax.
AUTHENTICATION_TYPE The values of the AUTHENTICATION_TYPE enumerated type are used to specify the authentication method.
CLIENTPROPERTIES The values of the CLIENTPROPERTIES type enumerate the properties of a RADIUS client. The SDO computer is the RADIUS server.
CONDITIONPROPERTIES The values of the CONDITIONPROPERTIES enumeration type specify the properties of a Network Access Policy (NAP) condition.
DICTIONARYPROPERTIES The values of the DICTIONARYPROPERTIES properties type enumerate properties associated with the attribute dictionary.
IASCOMMONPROPERTIES The values of the IASCOMMONPROPERTIES enumeration type enumerate properties that are present in all SDO objects.
IASCOMPONENTPROPERTIES The values of the IASCOMPONENTPROPERTIES enumeration type enumerate identifiers for an SDO object.
IASDATASTORE The values of the IASDATASTORE enumeration indicate the possible storage locations for SDO data.
IASDOMAINTYPE The values of the IASDOMAINTYPE enumeration type specify whether the SDO computer is part of a domain, and if so, what type of domain.
IASOSTYPE The values of the IASOSTYPE enumeration type specify what type of operating system the client requesting authentication (SDO computer) is running.
IASPROPERTIES The values of the IASPROPERTIES enumeration type enumerate properties related to NPS.
IDENTITY_TYPE The different possible values for MS_ATTRIBUTE_IDENTITY_TYPE.
NAMESPROPERTIES The values of the NAMESPROPERTIES enumeration type enumerate properties related to the name of the user requesting network access.
NAPPROPERTIES The values of the NAPPROPERTIES enumeration type specify properties for Network Access Policies (NAP).
NEW_LOG_FILE_FREQUENCY The values of the NEW_LOG_FILE_FREQUENCY enumeration type specify how frequently new log files are created.
NTEVENTLOGPROPERTIES The values of the NTEVENTLOGPROPERTIES enumeration type enumerate what types of events should be logged in the NT Event Log.
NTSAMPROPERTIES The values of the NTSAMPROPERTIES enumeration type specify properties related to the NT Security Accounts Manager (SAM).
POLICYPROPERTIES The values of the POLICYPROPERTIES enumeration type enumerate properties of a Network Access Policy (NAP).
PROFILEPROPERTIES The PROFILEPROPERTIES enumeration type enumerates properties associated with a profile.
PROTOCOLPROPERTIES The values of the PROTOCOLPROPERTIES enumeration type enumerate properties of an authentication protocol.
RADIUS_ACTION The RADIUS_ACTION type enumerates the responses that a NPS Extension DLL can generate in response to an Access-Request.
RADIUS_ATTRIBUTE_TYPE The RADIUS_ATTRIBUTE_TYPE type enumerates the possible types for a RADIUS attribute.
RADIUS_AUTHENTICATION_PROVIDER The RADIUS_AUTHENTICATION_PROVIDER type enumerates the possible authentication providers that NPS can use.
RADIUS_CODE The RADIUS_CODE enumeration type enumerates the possible RADIUS packet codes.
RADIUS_DATA_TYPE The RADIUS_DATA_TYPE type enumerates the possible data type for a RADIUS attribute or extended attribute.
RADIUS_EXTENSION_POINT The RADIUS_EXTENSION_POINT enumeration type enumerates the possible points in the RADIUS request process when the RadiusExtensionProcess2 function can be called.
RADIUS_REJECT_REASON_CODE The RADIUS_REJECT_REASON_CODE enumeration defines the possible RADIUS packet reject codes.
RADIUSPROPERTIES The values of the RADIUSPROPERTIES enumeration type enumerate properties of the Microsoft RADIUS protocol SDO.
RADIUSPROXYPROPERTIES The values in the RADIUSPROXYPROPERTIES enumeration type enumerate properties related to the RADIUS proxy service.
RADIUSSERVERGROUPPROPERTIES The values in the RADIUSSERVERGROUPPROPERTIES enumeration type enumerate properties of a RADIUS server group.
RADIUSSERVERPROPERTIES The values of the RADIUSSERVERPROPERTIES enumeration type enumerate the properties of the RADIUS server, that is the SDO computer.
REMEDIATIONSERVERGROUPPROPERTIES The values of the REMEDIATIONSERVERGROUPPROPERTIES enumeration type enumerate the properties of a remediation server group.
REMEDIATIONSERVERPROPERTIES The values of the REMEDIATIONSERVERPROPERTIES enumeration type enumerate the properties of a remediation server.
REMEDIATIONSERVERSPROPERTIES The values of the REMEDIATIONSERVERSPROPERTIES enumeration type enumerate the properties of a set of remediation server groups.
SERVICE_TYPE The values of the SERVICE_TYPE enumeration type specify the type of service administered from the SDO API.
SHV_COMBINATION_TYPE The SHV_COMBINATION_TYPE enumeration type specifies the type of a System Health Validator (SHV) combination.
SHVTEMPLATEPROPERTIES The values of the SHVTEMPLATEPROPERTIES enumeration type enumerate the properties of a System Health Validator (SHV) template.
USERPROPERTIES The values of the USERPROPERTIES enumeration type enumerate the user properties supported by the SDO API.
VENDORPROPERTIES The values of the VENDORPROPERTIES enumeration type specify properties of objects in the vendors collection.

Functions

Title Description
Add The Add method adds an item to the Server Data Objects (SDO) collection.
Apply The Apply method writes to persistent storage the changes made by calls to the ISdo::PutProperty method.
Attach The Attach method attaches to an SDO computer. Attaching to an SDO computer is the first step is using the SDO API to administer that computer.
CreateAttribute The CreateAttribute method creates a new attribute object and returns an IDispatch interface to it.
EnumAttributes The EnumAttributes method retrieves the values of the specified attributes.
EnumAttributeValues The EnumAttributeValues method retrieves the values for an enumerable attribute.
get__NewEnum The get__NewEnum method retrieves an IEnumVARIANT interface for the Server Data Objects (SDO) properties.
get__NewEnum The get__NewEnum method retrieves an IEnumVARIANT interface for a Server Data Objects (SDO) collection.
get_Count The get_Count method returns the number of items in the collection.
GetAttachedComputer The GetAttachedComputer method retrieves the name of the computer that is currently attached as an SDO computer.
GetAttributeID The GetAttributeID method retrieves the ID for the specified attribute.
GetAttributeInfo The GetAttributeInfo retrieves information for the specified attribute.
GetDictionarySDO The GetDictionarySDO method retrieves an interface for an attribute-dictionary SDO.
GetDomainType The GetDomainType retrieves the type of domain in which the SDO computer resides.
GetOSType The GetOSType method retrieves the type of operating system running on the SDO computer.
GetProperty The GetProperty method retrieves the value of the specified property.
GetPropertyInfo The GetPropertyInfo method retrieves a pointer to an ISdoPropertyInfo interface for the specified property.
GetServiceSDO The GetServiceSDO method retrieves a Server Data Object (SDO) for the specified service.
GetServiceStatus The GetServiceStatus method retrieves the status of the service being administered through SDO.
GetUserSDO The GetUserSDO method retrieves an interface to the Server Data Object (SDO) for the specified user.
IsDirectoryAvailable The IsDirectoryAvailable method tests whether an Active Directory service is available on the SDO computer.
IsNameUnique The IsNameUnique method tests whether the specified name is unique in the collection.
Item The Item method retrieves the specified item from the collection.
PRADIUS_EXTENSION_FREE_ATTRIBUTES The RadiusExtensionFreeAttributes function is an application-defined function and is called by NPS to free the memory occupied by attributes returned by RadiusExtensionProcessEx.
PRADIUS_EXTENSION_INIT The RadiusExtensionInit function is an application-defined function and is called by NPS while the service is starting up. Use RadiusExtensionInit to perform any initialization operations for the Extension DLL.
PRADIUS_EXTENSION_PROCESS The RadiusExtensionProcess function is an application-defined function and is called by NPS for each authentication or accounting packet that NPS receives from the network access server (NAS).
PRADIUS_EXTENSION_PROCESS_2 An application defined-function and is called by NPS for each authentication or accounting packet that NPS receives.
PRADIUS_EXTENSION_PROCESS_EX The RadiusExtensionProcessEx function is an application-defined function and is called by NPS for each authentication or accounting packet that NPS receives from the network access server (NAS).
PRADIUS_EXTENSION_TERM The RadiusExtensionTerm function is an application-defined function and is called by NPS prior to unloading the Extension DLL. Use RadiusExtensionTerm to perform any clean-up operations for the Extension DLL.
PutProperty The PutProperty method sets the value of the specified property.
Reload The Reload method reloads all the objects in the collection from the underlying datastore.
Remove The Remove method removes the specified item from the collection.
RemoveAll The RemoveAll method removes all the items from the collection.
ResetProperty The ResetProperty method resets the specified property to its default value.
ResetService The ResetService method resets the service administered by the SDO API. Resetting the service causes the service to refresh its data.
Restore The Restore method reloads the values of the Server Data Objects (SDO) properties from persistent storage.
StartService The StartService method starts the service administered through SDO.
StopService The StopService method shuts down the service administered through SDO.

Interfaces

Title Description
ISdo Use the ISdo interface to store, retrieve, and update Server Data Objects (SDO) information.
ISdoCollection Use the ISdoCollection interface to manipulate a collection of SDO objects.
ISdoDictionaryOld Use the ISdoDictionaryOld interface to manipulate the dictionary of Remote Access Dial-In User Service (RADIUS) attributes.
ISdoMachine Use the ISdoMachine interface to attach to an SDO computer, obtain information about the SDO computer, and obtain interfaces to other SDO objects.
ISdoServiceControl Use the ISdoServiceControl interface to control the service being administered on the SDO computer.

Structures

Title Description
RADIUS_ATTRIBUTE The RADIUS_ATTRIBUTE structure represents a RADIUS attribute or an extended attribute.
RADIUS_ATTRIBUTE_ARRAY The RADIUS_ATTRIBUTE_ARRAY structure represents an array of attributes.
RADIUS_EXTENSION_CONTROL_BLOCK The RADIUS_EXTENSION_CONTROL_BLOCK structure provides information about the current RADIUS request. It also provides functions for obtaining the attributes associated with the request, and for setting the disposition of the request.
RADIUS_VSA_FORMAT The RADIUS_VSA_FORMAT structure represents the format of the string portion of a RADIUS vendor-specific attribute.