question

sajithgh avatar image
0 Votes"
sajithgh asked ElsieLu-MSFT commented

Enabling remote access to SharePoint 2016 with Azure Active Directory Application Proxy

One of the prereqisites for Enabling remote access to SharePoint 2016 with Azure Active Directory Application Proxy is

An Application Proxy connector installed and running on a machine within the corporate domain.

Can we use the same connector used for the exchange for this purpose ?

129828-applicationproxy.png


office-sharepoint-server-administration
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

ElsieLu-MSFT avatar image
0 Votes"
ElsieLu-MSFT answered ElsieLu-MSFT commented

Hi @sajithgh ,

Per my understanding, it is recommended to create a new connector.

As the official article mentioned:

If the SharePoint site uses claims-based authentication, you must use the Add Relying Party Trust Wizard to configure the relying party trust for the application.

If the SharePoint site uses Integrated Windows authentication, you must use the Add Non-Claims-Based Relying Party Trust Wizard to configure the relying party trust for the application. You can use IWA with a claims-based web application provided that you configure KDC.

As for connecting to Exchange Server:

To publish Outlook Web App using Integrated Windows authentication, you must use the Add Non-Claims-Based Relying Party Trust Wizard to configure the relying party trust for the application.

To allow users to authenticate using Integrated Windows authentication, the Web Application Proxy server must be joined to a domain. See 1.3. Plan Active Directory.

=================================================
Since we currently provide support for SharePoint and are not familiar with Azure and Exchange, you can also post a new thread with Azure and Exchange for more help.


If the answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

For the new connector, do i have to create a separate VM for AD Application proxy server in the corporate onpremise network ?

0 Votes 0 ·

Hi @sajithgh ,

Thanks for the reply. According to my understanding, under normal circumstances, more than one connector can be created and there is no need to re-create a VM.
However, since this is beyond the scope of SharePoint which we are currently providing support, I would suggest you add an Azure tag to Azure team for more professional advice.

And I found a blog about How to secure Exchange 2016 with Azure AD you could have a look if interested:
How to secure Exchange 2016 with Azure AD – Part 3 – Azure Application Proxy
Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.


0 Votes 0 ·