Azure MFA for SSL VPN
Hello,
We have a SonicWall NSA 9450 in our DataCenter, serving as the SSL VPN server for remote users. Presently, users authenticate against an on-premise LDAP server. The customer is seeking to implement MFA. SonicWall supports two MFA authentication methods: OTP via email and TOTP. However, both methods necessitate the client's initial connection via the virtual office web page to bind the app with TOTP. Unfortunately, the customer prefers not to expose the virtual office web page on the WAN interface. Considering this, the customer is keen on exploring Azure AD options for MFA, as they already have MFA deployed with Azure AD/M365. Is it feasible to bypass the need for binding the client app with TOTP if Azure offers push notifications as an authentication method?
Answers
I deploy with Internal NPS RADIUS server with Azure Extensions for MFA into the tenancy