|Applies To||RSA Product Set: SecurID|
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.x
Product Name: RSA-0010810
Product Description: RSA-0010810
Through the AD FS Management tool, one can set a global authentication policy that applies to all relying party apps, or a per a relying party trust policy that applies to a specific relying party app. The first screenshot below shows an example of a global policy configured to require all extranet users to use multi-factor authentication (MFA) when accessing any web app protected by AD FS.
Note the extranet and intranet checkboxes. Extranet means that the authentication request is coming through a Web Application Proxy (see https://technet.microsoft.com/en-us/library/hh831502.aspx).