Hi All,
We have a domain joined RDS gateway server in our DMZ using an RODC for LDAP/AD connections. In this scenario, is it best to put an Azure MFA NPS server in the DMZ or LAN? Currently we have it in the DMZ (working fine), as the network team have said the fewer open ports between the DMZ and LAN the better.
I'm just wondering if there's any reason to move it into the LAN?
Thanks!!