Apr 17 2020 12:12 PM
Hi, I have a site where I want to protect the VPN service using (RADIUS) and Azure MFA.
The site currently doesn't have a local active directory domain controller. The users connecting to the VPN are Azure AD users (P1).
I'm hoping not to need to set up a local domain controller, but just keep the NPS server in a workgroup. Is this possible?
Apr 17 2020 07:29 PM - edited Apr 17 2020 07:31 PM
SolutionApr 18 2020 07:48 AM
Apr 18 2020 12:52 PM
@Thijs Lecomte That's a good suggestion. I did look at that, unfortunately, my hardware firewall doens't support it and I need to resort to RADIUS.
Apr 18 2020 12:55 PM
@Moe_Kinani Fair enough, I've just implemented an NPS server with the Extension (leaning on a local AD too). I like DUO very much, it can do things MS should have done out of the box a long time ago (like easy RDP MFA). But the idea is to have everything using the same authentication (and I'm now using SAML to AzureAD on all webservices)
Apr 17 2020 07:29 PM - edited Apr 17 2020 07:31 PM
Solution