Steps to renew the certificate:
Login to RADIUS Server
Start → Run → certlm.msc
Under Personal → Certificates, you will see a certificate with Azure AD Tenant ID – and its expiry date
To renew the certificate, Open Powershell as Administrator
Run the following commands:
cd “C:\Program Files\Microsoft\AzureMfa\Config\”
.\AzureMfaNpsExtnConfigSetup.ps1
It will first prompt to install the libraries from PS Gallery, Type A to say “Yes to All” and click enter.
Next it will open up the AD login page for authentication. Enter the username, password and approve the MFA request.
Wait for the script to continue running. It will prompt to check the existing Tenant Id. Ensure the Azure Tenant Id is listed as 59xxx-xxxx-xxxx-xxxxx-xxxxx
At the end of the script, it will try to restart the Network Policy server.