Hello,
I have a VPN firewall (Cisco ASA) that is validating the client certificate and it also sends the CN, which is the username, to the NPS for authorization. That means that the NPS server can't authenticate the user, because it receives an empty password field in the RADIUS packet. Therefore, I want to skip the authentication and implement authorization only.
I can't find a way how to implement this. The NPS policy nevery matches, because the authentication already fails. Is there a way to skip the authentication on NPS?
~ Julian