Team,
Thanks in advance, I've configured RDS environment with session host, web access, connection broker and a RD gateway server.
I've enabled MFA calling through Azure MFA Server using the below link which Microsoft suggests. But I wanted MFA calling for external users and not when users coming from internal IPs.
In MFA console we have trusted IPs tab where we have to put in the users IP or IP range, but here as the authentication is sent by the RD gateway server everything is ignored by the MFA server and for internal users as well I'm getting MFA Calling.
Has anybody tried it before? This cannot be achieved through Azure MFA but can be achieved through NPS policies but unable to achieve it.
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfaserver-nps-rdg