Hi,
I have a query regarding ADFS and Duo integration. Kindly request you to treat this as urgent and reply back ASAP.
Use Case:
Customer wants to Rollout few Users with Outlook2016 in the Production environment. Remaining user will stay in Outlook2013 for now. The Pilot Test Case is that we will be
Integrating Duo with ADFS in the Production environment, and create a group in AD to have only these few test Users(Outlook2016) users test it for now. Once successful we
can have all Users access 2016 using MFA.
Concerns:
- As of now we have Modern Authentication disabled in Production. But since we move towards Office2016 we will need to enable our tenant for Modern Authentication.
We have composed a PowerShell rule in place(Only external users should be prompted, disable MFA for Active Sync clients, and test only few users in specific security group in AD).The concern is if we
enable Duo in production with ADFS, will other users who are using Outlook2013 will have issues in connecting to O365? The Custom rule will only bypass MFA?
- Modern Authentication will be enabled for our tenant. But we will not be enabling the registry for Outlook2013 users. Will this cause issues for initial login for Outlook2013 users?
- Do we need to reconfigure mail profiles for the pilot users who are in Outlook2016?
Regards
Vignesh
