Hi alltogether,
i try to achive th following:
* WLAN-Clients authenticate against my AD via RADIUS (NPS). (done, works)
* Different AD-Groups invoke different Policies. (done, works)
* Some of the policies have Day and Time Restrictions enabled (I use those on the "Constraints Tab" of the policies) . (done, does not work completely)
My problem is, that devices, when used by users in such a restricted group, will not drop the connection, once they enter the not allowed time slots. If the are not connected in such time slots, they can not connect, which is what I want.
I have already checked, that the correct Network Policy is used, which is easily done by checking the event log. So everything works fine, except that the users can keep their running connection open, although they entered a time slot, where they should not. So they just need to log in before and keep the connection open.
So what am I doing wrong? Thanks for your help.
Thomas