Hello,
I have just installed a pair of NPS Servers to be able to use as a second factor auth, using the Azure MFA extension.
I believe I cannot just use the Azure MFA Extension on its own, I need to authenticate to AD as well. All of our users are mfa registered & synced into the cloud.
There are 2 things that I am trying to achieve.
Use AD & MFA Authentication from NPS to provide citrix netscaler access, using MFA. This seems to be quite a simple thing to do. I just need to move the AD authentication to the NPS server, rather than AD servers.
Setup an Always On VPN. As part of this an NPS server is required. I am still waiting to see if the management want MFA on this.
Is it possible to not send the authentication requests to the Azure MFA service, or does it always send the request to it as part of the extension being installed.
If it always sends the request to Azure would I need to build a new set of NPS Servers without the MFA Extension installed?
Thanks
Matt