NPS Configuration
Step1. Add the Cisco Radius Client
Step 2. Create a Network Policy
Step 3. Give your Policy a name
Step 4. Select your AD Groups who can Authenticate
Step 5. Accept PAP
Step 6.
Set the Attributes.
Step 7. Configure the Cisco-AV-Pair: shell:priv-lvl=15
Step 8.
Configure the Cisco Router
aaa new-model
radius-server host 192.168.2.10 key 0 12345
aaa authentication login default group radius local ! wait for radius to timeout then it will try local database
aaa authentication enable default none
! Setup the console to be local password
aaa authentication login CONSOLE local
Router(config)#line con 0
Router(config-line)#exec-timeout 0 0
Router(config-line)#password cisco
Router(config-line)#login authentication CONSOLE
! Authorization
aaa authorization exec default if-authenticated
aaa authentication enable default none