Network Policy Server

Overview of the Network Policy Server technology.

To develop Network Policy Server, you need these headers:

For programming guidance for this technology, see:

Enumerations

 
ACCOUNTINGPROPERTIES

The values of the ACCOUNTINGPROPERTIES type enumerate properties that control what types of packets are logged and characteristics of the log file.
ATTRIBUTEFILTER

The usage cases for the NPS dictionary attributes.
ATTRIBUTEID

The ATTRIBUTEID enumeration type enumerates the RADIUS attributes supported by the SDO API.
ATTRIBUTEINFO

The values of the ATTRIBUTEINFO type enumerate characteristics of a specified attribute.
ATTRIBUTEPROPERTIES

The values of the ATTRIBUTEPROPERTIES type enumerate properties for a RADIUS dictionary attribute.
ATTRIBUTERESTRICTIONS

The values of the ATTRIBUTERESTRICTIONS enumeration type specify restrictions on how a particular attribute can be used.
ATTRIBUTESYNTAX

Each value from the ATTRIBUTESYNTAX enumeration type specifies a possible attribute syntax.
AUTHENTICATION_TYPE

The values of the AUTHENTICATION_TYPE enumerated type are used to specify the authentication method.
CLIENTPROPERTIES

The values of the CLIENTPROPERTIES type enumerate the properties of a RADIUS client. The SDO computer is the RADIUS server.
CONDITIONPROPERTIES

The values of the CONDITIONPROPERTIES enumeration type specify the properties of a Network Access Policy (NAP) condition.
DICTIONARYPROPERTIES

The values of the DICTIONARYPROPERTIES properties type enumerate properties associated with the attribute dictionary.
IASCOMMONPROPERTIES

The values of the IASCOMMONPROPERTIES enumeration type enumerate properties that are present in all SDO objects.
IASCOMPONENTPROPERTIES

The values of the IASCOMPONENTPROPERTIES enumeration type enumerate identifiers for an SDO object.
IASDATASTORE

The values of the IASDATASTORE enumeration indicate the possible storage locations for SDO data.
IASDOMAINTYPE

The values of the IASDOMAINTYPE enumeration type specify whether the SDO computer is part of a domain, and if so, what type of domain.
IASOSTYPE

The values of the IASOSTYPE enumeration type specify what type of operating system the client requesting authentication (SDO computer) is running.
IASPROPERTIES

The values of the IASPROPERTIES enumeration type enumerate properties related to NPS.
IDENTITY_TYPE

The different possible values for MS_ATTRIBUTE_IDENTITY_TYPE.
NAMESPROPERTIES

The values of the NAMESPROPERTIES enumeration type enumerate properties related to the name of the user requesting network access.
NAPPROPERTIES

The values of the NAPPROPERTIES enumeration type specify properties for Network Access Policies (NAP).
NEW_LOG_FILE_FREQUENCY

The values of the NEW_LOG_FILE_FREQUENCY enumeration type specify how frequently new log files are created.
NTEVENTLOGPROPERTIES

The values of the NTEVENTLOGPROPERTIES enumeration type enumerate what types of events should be logged in the NT Event Log.
NTSAMPROPERTIES

The values of the NTSAMPROPERTIES enumeration type specify properties related to the NT Security Accounts Manager (SAM).
POLICYPROPERTIES

The values of the POLICYPROPERTIES enumeration type enumerate properties of a Network Access Policy (NAP).
PROFILEPROPERTIES

The PROFILEPROPERTIES enumeration type enumerates properties associated with a profile.
PROTOCOLPROPERTIES

The values of the PROTOCOLPROPERTIES enumeration type enumerate properties of an authentication protocol.
RADIUS_ACTION

The RADIUS_ACTION type enumerates the responses that a NPS Extension DLL can generate in response to an Access-Request.
RADIUS_ATTRIBUTE_TYPE

The RADIUS_ATTRIBUTE_TYPE type enumerates the possible types for a RADIUS attribute.
RADIUS_AUTHENTICATION_PROVIDER

The RADIUS_AUTHENTICATION_PROVIDER type enumerates the possible authentication providers that NPS can use.
RADIUS_CODE

The RADIUS_CODE enumeration type enumerates the possible RADIUS packet codes.
RADIUS_DATA_TYPE

The RADIUS_DATA_TYPE type enumerates the possible data type for a RADIUS attribute or extended attribute.
RADIUS_EXTENSION_POINT

The RADIUS_EXTENSION_POINT enumeration type enumerates the possible points in the RADIUS request process when the RadiusExtensionProcess2 function can be called.
RADIUS_REJECT_REASON_CODE

The RADIUS_REJECT_REASON_CODE enumeration defines the possible RADIUS packet reject codes.
RADIUSPROPERTIES

The values of the RADIUSPROPERTIES enumeration type enumerate properties of the Microsoft RADIUS protocol SDO.
RADIUSPROXYPROPERTIES

The values in the RADIUSPROXYPROPERTIES enumeration type enumerate properties related to the RADIUS proxy service.
RADIUSSERVERGROUPPROPERTIES

The values in the RADIUSSERVERGROUPPROPERTIES enumeration type enumerate properties of a RADIUS server group.
RADIUSSERVERPROPERTIES

The values of the RADIUSSERVERPROPERTIES enumeration type enumerate the properties of the RADIUS server, that is the SDO computer.
REMEDIATIONSERVERGROUPPROPERTIES

The values of the REMEDIATIONSERVERGROUPPROPERTIES enumeration type enumerate the properties of a remediation server group.
REMEDIATIONSERVERPROPERTIES

The values of the REMEDIATIONSERVERPROPERTIES enumeration type enumerate the properties of a remediation server.
REMEDIATIONSERVERSPROPERTIES

The values of the REMEDIATIONSERVERSPROPERTIES enumeration type enumerate the properties of a set of remediation server groups.
SERVICE_TYPE

The values of the SERVICE_TYPE enumeration type specify the type of service administered from the SDO API.
SHV_COMBINATION_TYPE

The SHV_COMBINATION_TYPE enumeration type specifies the type of a System Health Validator (SHV) combination.
SHVTEMPLATEPROPERTIES

The values of the SHVTEMPLATEPROPERTIES enumeration type enumerate the properties of a System Health Validator (SHV) template.
USERPROPERTIES

The values of the USERPROPERTIES enumeration type enumerate the user properties supported by the SDO API.
VENDORPROPERTIES

The values of the VENDORPROPERTIES enumeration type specify properties of objects in the vendors collection.

Functions

 
Add

The Add method adds an item to the Server Data Objects (SDO) collection.
Apply

The Apply method writes to persistent storage the changes made by calls to the ISdo::PutProperty method.
Attach

The Attach method attaches to an SDO computer. Attaching to an SDO computer is the first step is using the SDO API to administer that computer.
CreateAttribute

The CreateAttribute method creates a new attribute object and returns an IDispatch interface to it.
EnumAttributes

The EnumAttributes method retrieves the values of the specified attributes.
EnumAttributeValues

The EnumAttributeValues method retrieves the values for an enumerable attribute.
get__NewEnum

The get__NewEnum method retrieves an IEnumVARIANT interface for the Server Data Objects (SDO) properties.
get__NewEnum

The get__NewEnum method retrieves an IEnumVARIANT interface for a Server Data Objects (SDO) collection.
get_Count

The get_Count method returns the number of items in the collection.
GetAttachedComputer

The GetAttachedComputer method retrieves the name of the computer that is currently attached as an SDO computer.
GetAttributeID

The GetAttributeID method retrieves the ID for the specified attribute.
GetAttributeInfo

The GetAttributeInfo retrieves information for the specified attribute.
GetDictionarySDO

The GetDictionarySDO method retrieves an interface for an attribute-dictionary SDO.
GetDomainType

The GetDomainType retrieves the type of domain in which the SDO computer resides.
GetOSType

The GetOSType method retrieves the type of operating system running on the SDO computer.
GetProperty

The GetProperty method retrieves the value of the specified property.
GetPropertyInfo

The GetPropertyInfo method retrieves a pointer to an ISdoPropertyInfo interface for the specified property.
GetServiceSDO

The GetServiceSDO method retrieves a Server Data Object (SDO) for the specified service.
GetServiceStatus

The GetServiceStatus method retrieves the status of the service being administered through SDO.
GetUserSDO

The GetUserSDO method retrieves an interface to the Server Data Object (SDO) for the specified user.
IsDirectoryAvailable

The IsDirectoryAvailable method tests whether an Active Directory service is available on the SDO computer.
IsNameUnique

The IsNameUnique method tests whether the specified name is unique in the collection.
Item

The Item method retrieves the specified item from the collection.
PRADIUS_EXTENSION_FREE_ATTRIBUTES

The RadiusExtensionFreeAttributes function is an application-defined function and is called by NPS to free the memory occupied by attributes returned by RadiusExtensionProcessEx.
PRADIUS_EXTENSION_INIT

The RadiusExtensionInit function is an application-defined function and is called by NPS while the service is starting up. Use RadiusExtensionInit to perform any initialization operations for the Extension DLL.
PRADIUS_EXTENSION_PROCESS

The RadiusExtensionProcess function is an application-defined function and is called by NPS for each authentication or accounting packet that NPS receives from the network access server (NAS).
PRADIUS_EXTENSION_PROCESS_2

An application defined-function and is called by NPS for each authentication or accounting packet that NPS receives.
PRADIUS_EXTENSION_PROCESS_EX

The RadiusExtensionProcessEx function is an application-defined function and is called by NPS for each authentication or accounting packet that NPS receives from the network access server (NAS).
PRADIUS_EXTENSION_TERM

The RadiusExtensionTerm function is an application-defined function and is called by NPS prior to unloading the Extension DLL. Use RadiusExtensionTerm to perform any clean-up operations for the Extension DLL.
PutProperty

The PutProperty method sets the value of the specified property.
Reload

The Reload method reloads all the objects in the collection from the underlying datastore.
Remove

The Remove method removes the specified item from the collection.
RemoveAll

The RemoveAll method removes all the items from the collection.
ResetProperty

The ResetProperty method resets the specified property to its default value.
ResetService

The ResetService method resets the service administered by the SDO API. Resetting the service causes the service to refresh its data.
Restore

The Restore method reloads the values of the Server Data Objects (SDO) properties from persistent storage.
StartService

The StartService method starts the service administered through SDO.
StopService

The StopService method shuts down the service administered through SDO.

Interfaces

 
ISdo

Use the ISdo interface to store, retrieve, and update Server Data Objects (SDO) information.
ISdoCollection

Use the ISdoCollection interface to manipulate a collection of SDO objects.
ISdoDictionaryOld

Use the ISdoDictionaryOld interface to manipulate the dictionary of Remote Access Dial-In User Service (RADIUS) attributes.
ISdoMachine

Use the ISdoMachine interface to attach to an SDO computer, obtain information about the SDO computer, and obtain interfaces to other SDO objects.
ISdoServiceControl

Use the ISdoServiceControl interface to control the service being administered on the SDO computer.

Structures

 
RADIUS_ATTRIBUTE

The RADIUS_ATTRIBUTE structure represents a RADIUS attribute or an extended attribute.
RADIUS_ATTRIBUTE_ARRAY

The RADIUS_ATTRIBUTE_ARRAY structure represents an array of attributes.
RADIUS_EXTENSION_CONTROL_BLOCK

The RADIUS_EXTENSION_CONTROL_BLOCK structure provides information about the current RADIUS request. It also provides functions for obtaining the attributes associated with the request, and for setting the disposition of the request.
RADIUS_VSA_FORMAT

The RADIUS_VSA_FORMAT structure represents the format of the string portion of a RADIUS vendor-specific attribute.