I'm currently setting up an NPS link between Azure MFA in Office 365 and my Citrix NetScaler.
The intention is to control MFA from the Cloud to allow for MFA with Office 365 and also MFA with standard logins to Citrix through the Storefront (hosted on the NetScaler).
(So control all from 1 location instead of having Azure MFA and also On-premise MFA Server).
This involves an integrator, NPS and also RADIUS configurations on a dedicated machine.
My question with this is as follows:
Is there a way to get the RADIUS configuration (or any of the others) to query a specific field in Active Directory when doing the authentication?
Since Azure MFA doesn't have an option for 'Static PIN' when authenticating, I thought maybe I could get around this by getting the Authentication process to look at a field in Active Directory for a PIN entry instead.
(This will only apply for on-premise NetScaler authentication, as I'm not fussed about O365 auth. with this method).
Thanks in advance.