How to find NPS client Radius Shared Secret Key
Posted by on July 13, 2020
Overtime we forget things, especially Shared secret radius keys. This is pretty common, and I run into it a lot. For example – lets say a you setup NPS (Network Policy Server) and a Wireless controller for 802.1x auth, or a ASA doing radius authentication years ago. Some how or another that key was lost – no worries, you can get that back from the NPS server itself.
In just a few simple steps you can get that key back. So lets start by opening up NPS and then selecting “Radius Clients and Servers” and dropping down “Radius Clients”
In this example I am using a Ruckus Smartzone – lets say I forget the password. I can just right click on the client and select “Save and apply as Template.
Next we can create a new radius client by right clicking on “Radius Clients” and once the client info pops up to fill in, we will select to create it from the template, and select the template we made.
To see the *** Password, uncheck the box “Select and existing template” and then select the “Generate” Radio button – and bam! there is the PSK.
When I uncheck the “Select an existing template” box the Generate button stays grayed out. I guess Microsoft has released an update to fix this as a security flaw?
You sir are genius, thank you very much 🙂
today, 05/10/2021 i can still use this guide. Thanks so much
Wooohooo, Thank you very much. This saved my Day. I can confirm (at least on Windows Server 2012):
When Using the Template, then de-selecting it and Choosing to generate a Shared Secred, the used one in the Template is revealed.
Great Post =D
Or you can just export the configuration and find the key strings for each Radius client in the xml file
i can still using this guide on March 2022, thank you very much
WOW… Thank you Sir