Azure MFA to On-premises applications without ADFS and AzADAppProxy

Miguel Gonçalves | AVANADE 886 Reputation points
2023-06-17T15:00:56.0166667+00:00

Hi.
I need to know what options do I have to force my internal apps to request Azure MFA when my clients access internally (or externally, published in the firewall).
I don't want that my on-premises apps needs to go via application proxy via azure, because all my Portuguese clients needs to access to north europe.
I Have ADFS but want remove from environment.
MFA Server is going out of scope from Microsoft.
There is some way to connect my internal app directly to azure AD only to force MFA, but user traffic don't go out of my on-premises infrastructure?

Microsoft Identity Manager
Microsoft Identity Manager
A family of Microsoft products that manage a user's digital identity using identity synchronization, certificate management, and user provisioning.
645 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,315 questions
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. JimmySalian-2011 42,066 Reputation points
    2023-06-17T16:42:39.0266667+00:00

    Hi,

    In this scenario you will have to migrate your apps to Azure and setup SSO, after the apps are migrated you will have to decom ADFS Server and with P1 License you use MFA for the users but for this scenario you will have to setup conditional access policy as per the requirements.

    ADFS to Azure AD Migration - https://video2.skills-academy.com/en-GB/azure/active-directory/manage-apps/migrate-adfs-application-activity

    Detailed design will be required for the Apps migration and testing so please review all the phases here - https://video2.skills-academy.com/en-gb/azure/active-directory/manage-apps/migrate-adfs-apps-phases-overview

    For MFA setup on Azure follow the guidelines here and also the conditional access policy will be required - https://video2.skills-academy.com/en-us/azure/active-directory/authentication/howto-mfa-getstarted

    ==

    Please Accept the answer if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.
  2. Deleted

    This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

    Comments have been turned off. Learn more

  3. Deleted

    This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

    Comments have been turned off. Learn more