Hello!
Can anybody post a link to a document explaining the priority between the Dial-In permissions available on a user account's Dial-In tab in AD?
I mean should a VPN server look into the NPS network policy - for example, for User2 - if that User2 has itsDial-In permission explicitly set for Allow access?
In my test network no user can get access untill he/she complies with the NPS network policy:
In Windows 2000/2003 (maybe in 2008 too - I don't remember) setting a user's Dial-In permission to Allow access meant the network policy should NOT be checked at all - has this behaviour changed in Windows Server 2012R2?
Thank you in advance,
Michael