Hi there, sorry to bump an old thread.
I am encountering a similar issue where disabling the RD RAPs isn’t ideal for our organization. We need to implement 2FA for External Users only but we also use Terminal Servers in our Interior Network. Most Ext...