Forum Discussion
JayBeeFinalBeta
Apr 17, 2020Copper Contributor
Azure MFA using NPS without local domain?
Hi, I have a site where I want to protect the VPN service using (RADIUS) and Azure MFA. The site currently doesn't have a local active directory domain controller. The users connecting to the VPN a...
- Apr 18, 2020Hi Jay,
Not possible with NPS, I actually used the NPS extension for Azure P2S last year, you don’t need to have MFA server but you must have Local domain to do the authentication part.
You may have to look for different Radius setup like DUO for instance!
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-nps-extension
Moe_Kinani
Apr 18, 2020Bronze Contributor
Hi Jay,
Not possible with NPS, I actually used the NPS extension for Azure P2S last year, you don’t need to have MFA server but you must have Local domain to do the authentication part.
You may have to look for different Radius setup like DUO for instance!
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-nps-extension
Not possible with NPS, I actually used the NPS extension for Azure P2S last year, you don’t need to have MFA server but you must have Local domain to do the authentication part.
You may have to look for different Radius setup like DUO for instance!
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-nps-extension
- JayBeeFinalBetaApr 18, 2020Copper Contributor
Moe_Kinani Fair enough, I've just implemented an NPS server with the Extension (leaning on a local AD too). I like DUO very much, it can do things MS should have done out of the box a long time ago (like easy RDP MFA). But the idea is to have everything using the same authentication (and I'm now using SAML to AzureAD on all webservices)