Forum Discussion
jessperbaylon
Nimbostratus
NimbostratusF5 BIG-IP APM Integrated to Azure AD for User
I have integrated my BIG-IP APM to Azure AD using Service Provider SAML and it seems it is working well, but when user logout/disconnected to VPN and reconnect back, it is no longer asking for the MS...
jessperbaylonNimbostratus
NimbostratusHI Aubrey,
I have managed to make it to work using a force authentication (Enabled). The challenge here is that users keeps on entering the username and password + MS Authenticator PIN every time user login to VPN.
Is there a way, that I can set the Force Authentication as Use AAA Server Settings (which is a single sign on) but will still prompt for MS Authenticator?
Nikoolayy1
MVP
MVPMaybe try playing with microsoft conditional access and MFA as Azure AD is selecting when to again ask users for MFA. Maybe if this "Allow users to remember multi-factor authentication on devices" is dissabled: