We help IT Professionals succeed at work.

ADFS Additional Authentication Rule for DRoid Devices

194 Views
Last Modified: 2018-12-30
Using ADFS 3.0 additional authentication rules would the following be possible to create a rule that would do the following.

If OS = Android
And = IP address range is like 192.168.x.x as an example
Force Forms Authentication

If a device does not make this rule is would proceed with the normal Windows Integrated Authentication
Comment
Watch Question

Jian An LimSolutions Architect
CERTIFIED EXPERT
Top Expert 2016

Commented:
What you are looking for is a common issue for internal ADFS
You only can set either WIA/ basic OR FORM.

So you cannot achieve what you want.

What you could do is to force android device to not to use the internal ADFS but external ADWAP that is by default form based like usually external WIFI.

Author

Commented:
How would you do this "What you could do is to force android device to not to use the internal ADFS but external ADWAP that is by default form based like usually external WIFI"  So using and additional authentication that would look for the adroid agent string and forice the password authentication method would not work?
Solutions Architect
CERTIFIED EXPERT
Top Expert 2016
Commented:
This problem has been solved!
(Unlock this solution with a 7-day Free Trial)
UNLOCK SOLUTION

Author

Commented:
But you force different authentication methods i.e multiform factor.... how is this any different.

Thank you again for all of you help with this