Hi,
Microsoft NPS supports Vendor Specific Attributes; look for Cisco and include the following attribute as authorization in your NPS policy: "shell:cli-view-name=VIEWNAME". You would assign the users privilege level 15, as the view will control what commands they have access to.
Ideally you would do command authorization via TACACS, and there are free TACACS servers running perfectly.
Regards,
Cristian Matei.