Hi,
I've spent the last three days working with the Web Authentication Proxy component of Windows Server 2012 R2 and it will start to solve some of my problems in replacing the ISA and TMG servers I manage.
That said, given the new extensibility of ADFS with plugins, such as phone factor (which would be way to expensive for me to use with 10,000 students on one campus and 40,000 on another), there is a fantastic opportunity for the FIM team to create an extension.
I ideally needed one extra pieces of functionality with ISA/TMG but gave up when they were killed off. It was to be able to customise the login page so there would be a link to the FIM password reset port as that would save me thousands of Help desk calls.
With WAP I see an opportunity for two extra pieces of functionality.
a)The ability to link to the password reset portal directly from the WAP login page.
b)The ability for a subset of the password reset portal questions to be used for Multi-Factor authentication plugged into WAP.
Our biggest issue is people answering emails and giving out there passwords which results in us spamming everyone else and us being blocked from sending emails.
I can't blame the students as it's always, 100% of the time, a lecturer but I now see this on a weekly basis and I see this as a place where you guys can really add some value both to password reset and multi-factor auth.
If this is the wrong place to post this, someone let me know and I'll ask elsewhere.
Kind regards,
Jason Bailey