We have a New Use case requested by customer. Mentioned below the details.
Initial Use Case Concern:
Customer had hosted O365 webmail in Okta. We had integrated Duo with Okta to have MFA enabled for O365. The concern raised was that external users
trying to access the webmail from outside were prompted thrice for authentication (Okta->Duo->O365) this was a pain point for the customer. So we were looking for an alternative solution.
Current Use Case :
We found that Duo has the capability to integrate with ADFS directly to protect Browser based federated logins like O365.We are in the process of getting this POC executed.Customer wants to make sure that he will not have to authenticate with Duo to access his mailbox through Outlook. He should only have to authenticate with Duo if he tries to access his mailbox with OWA. This is mainly for Users accessing from external devices. Can you kindly share your inputs on this? Will there be any concern for Users using outlook too if Duo plugin has been installed on ADFS?.