OWA intergration

[Elves Sisante]

Dear RCDevs,

Is there any way to integrate RCDevs OpenOTP with our on-premises Exchange Server without using ADFS?

Previously, we used Cisco Duo with Exchange and it worked without ADFS, so we are wondering if there is a similar method available with RCDevs. The main reason is that publishing an ADFS service externally requires multiple internal approvals, which makes the deployment process difficult.

Could you please advise if there is an alternative approach, such as:

• Reverse Proxy integration
• IIS authentication module
• Exchange OWA/ECP protection without ADFS
• Any supported MFA method for Exchange 2019 on-premises that does not require ADFS

We would appreciate your recommendations and any available documentation.

Regards

[Yoann Traut (RCDevs)]

Hello,

At the moment, we have two possible approaches:

• Integrate ADFS for authentication to the OWA/ECP portals.

• Use a WAF (F5 APM) in front of the OWA/ECP portals. This is a solution we have already implemented for multiple customers. In this setup, F5 handles authentication through OpenOTP using RADIUS and presents the login page to the user. Once authentication is successfully validated by OpenOTP, F5 retrieves the username and password entered on its login page, redirects the user to the OWA/ECP portal, and transparently injects the credentials into the OWA/ECP login form. The user is then automatically authenticated upon redirection.

Regards,

[Elves Sisante]

Dear Youann,

Do you have any guidelines how to implement the using WAF

REgards

[Yoann Traut (RCDevs)]

No I don't have any documentation for this. Which WAF are you using ? I could check if this is possible with your WAF.

Regards