This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I'm trying to implement MFA on On-Premise Exchange Server 2016, I've done some research and followings are my findings.
Would be grateful for help.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 63%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
In fact, there is an on-premises MFA product that can secure Outlook Anywhere with multi-factor authentication. It is called Deepnet DualShield MFA for Outlook Anywhere. Please check out the link below.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 61%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
Yes it is the only single solution I have found and it can secure everything in an AD environment, RDP, Workstation Auth, Exchange. It is however a bit expensive and very technical to implement. They charge an installation fee which is a must. Highly recommend ongoing support maintenance. With MFA becoming a requirement for insurance policies and for those organizations who are on-premise, pretty much all there is unless someone else can comment.
If I was doing this, then yes, I would use HMA. Its the only solution I know of that covers all the Modern Auth clients.
Note all the virtual directories "Protected" by HMA
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 22%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELL%3C/text%3E%3C/svg%3E)
Hi @Mashal Khan ,
The "Answers" in this post details various situations of deploying MFA in Exchange 2016, and provides reference links. You can refer to: MFA on premises Exchange 2016
According to research on the information you porivded and another article, I agree with Andy. You could configure Exchange Server on-premises to use Hybrid Modern Authentication in Exchange Hybrid environment. For more information: Hybrid modern authentication overview and prerequisites for using it with on-premises Skype for Business and Exchange servers
----------
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Thank You anonymous userDavid @Lucas Liu-MSFT | That answers My question.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi Mashal.
Thanks for sharing your question.
I am checking the solution to more reference.
Pls update how to have MFA in Outlook Anywhere to success.
Thank for all.