This is a discussion on Installing a Network Policy Server on Windows Server 2008 within the Windows 2008 forums, part of the Operating systems category; Installing a Network Policy Server on Windows Server 2008 Installation of the Network Policy and Access Services role installs the ...
Installing a Network Policy Server on Windows Server 2008
Installation of the Network Policy and Access Services role installs the Network Policy Server component and the RADIUS (Remote Authentication Dial-In User Service) role. To install, follow the below steps:
1. Open Server Manager (To open, click on Start and then Control Panel and then Administrative Tools and then click on Server Manager).
2. Click the Add Roles link in the Actions pane.
3. On the Welcome page, click Next to continue.
4. From the list of roles to install, select Network Policy and Access Services from the list, and click Next to continue.
5. Review the information provided on the Welcome page, and click Next to continue.
6. On the Select Role Services page, select which role services to install on the server. Click Next to continue.
NOTE: Adding the Health Registration Authority (HRA) role service requires the IIS Web Server Role to be installed on the server. Selecting the role service might prompt you to install these services as well.
7. On the Certificate Authority (CA) page, choose whether to install a local CA for issuing health certificates or to use an existing remote CA. If using a remote CA, make sure it is dedicated to issuing only health certificates. In this example, we install a local CA; this will install Active Directory Certificate Services (AD CS) on the system. Click Next to continue.
8. Select whether to configure the HRA to allow only domain-authenticated users to get health certificates. This can improve security, but might not be wanted in environments with untrusted domains or with workgroup members. Click Next to continue.
9. Select a server authentication certificate to be used to encrypt the network traffic. Note that the certificate should be from an authority that is trusted by all of the clients, such as an internal enterprise domain CA or an external third-party CA. Click Next to continue.
10. If installing AD CS on the server, the wizard will lead you through the AD CS installation process.
11. If installing the IIS role on the server, the wizard will lead you through the IIS installation process.
12. On the Confirmation page, click Install.
13. Click Close when the wizard completes.