Office 365 authentication with local webserver in DMZ

Andreas 1,111 Reputation points

Hi, We have an on-premise AD that is in sync with Azure. All users are synced to Azure and we also have guest accounts in Azure. We want to deploy a local web server in DMZ, and that server is not domain joined. This web server will be public, and the login we would like to have Azure AD + MFA How could we have both internal and external user login to this with their AD account / Azure Guest account ? Thanks for any reply. /R Andy

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
5,080 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,531 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,594 questions
0 comments No comments
{count} votes

Accepted answer
  1. Thameur-BOURBITA 28,471 Reputation points

    Hi @Andreas

    If you want use Entra ID (Azure AD) and MFA , the service must be hosted in Entra. You cannot use Entra ID and MFA accounts to access a service installed on on premise server. This configuration may be possible only with: Using Microsoft Entra application proxy to publish on-premises apps for remote users.

    You can test this feature it may be a solution for your case.

    Please don't forget to accept helpful answer

0 additional answers

Sort by: Most helpful