VIP (Validation ID Protection)

Expand all | Collapse all

OWA MFA only for External users

  • 1.  OWA MFA only for External users

    Posted 08-14-2020 12:14 PM
    Is it possible to configure SVIP to only require MFA when accessing OWA externally and not when on internal network?
    If so, what is the approach?

    Regards,
    Koen


  • 2.  RE: OWA MFA only for External users

    Posted 08-24-2020 05:14 PM

    Hello Koen,

    By no mean I'm an expert on SVIP and do not know if such functionality is available out of the box with the solution, however such functionality is possible to achieve by utilizing ADFS.

    Hope it helps.




  • 3.  RE: OWA MFA only for External users

    Broadcom Employee
    Posted 08-25-2020 05:56 PM
    Koen,

    Assuming you are using OWA on IIS, can you create separate sites for internal and external users, then use VIP MFA to protect external access?

    From the VIP level, you could use Intelligent Authentication IP-based rules to allow internal users to remember their device and not be prompted for 2FA as long as the request is coming from a white-listed IP address.





  • 4.  RE: OWA MFA only for External users

    Posted 08-26-2020 03:08 AM
    Andreas,

    Interresting thought. I'll investigate your suggestions.
    Thanks.