Hi guys,
I had created an question in the Social Technet Forum (German Language) and earned no answer on my question. Sorry for this double post.
https://social.technet.microsoft.com/Forums/de-DE/279ed38e-f131-4fca-8fbd-92ebb43ba88e/tmg-vpn-mit-nap?forum=windows_Serverde
We are using a SSTP VPN which is terminated on TMG 2010. The user-authentication are redirected to an NPS based on Windows Server 2008 R2.
This NPS should confirm access based on NAP rules and move the clients into a quarantine if they are not approved.
My Problem is that my clients cannot connect to the VPN. In the event log can I see that the client is not NAP capable. Without the NAP specific rules (check the SVH value) the clients are able to connect to the VPN.
I have configured in the local NAP configuration (NAPCLCFG) to force the Network Protection and also in the properties of the VPN connection. But in the VPN connection this option will be gone after activation.
I used this document to configure the radius VPN connection. http://www.isaserver.org/articles-tutorials/general/Configuring-Forefront-TMG-client-VPN-access-NAP.html
Did you have any idea?
Thanks and best Regards,
Henry