Skip to content

Authentication FlowΒΆ

sequenceDiagram
    participant Client as Windows Client
    participant AP as AP / 802.1X Device
    participant NPS as NPS RADIUS
    participant AD as Active Directory
    participant CA as Certificate Authority
    Client->>AP: Authentication request
    AP->>NPS: RADIUS Access-Request
    NPS->>AD: Validate user or computer
    NPS->>CA: Validate certificate if EAP-TLS
    NPS-->>AP: Access-Accept / Reject
    AP-->>Client: Network access decision