This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 75%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
I've setup an adfs that works well inside our network however there is a need now to use it to access a site from outside the domain. I was looking at setting up a WAP in our DMZ however the internal and external domain are different. Everything I've looked over states the internal and external domain have to be the same in order to get this working properly. Is there a was around this?
The WAP servers do not have a requirement to be domain joined at all when they are solely used as ADFS Proxy servers.
You need to domain joined them only if you intend to publish non-claim aware applications using Kerberos constrained delegation. If not, they can even be in a workgroup.