We are in the process of implementing Azure MFA on our production RD Gateway. We want to be able to thoroughly test MFA authentication before producing documentation and rolling out to our production users. I am following the guide made by the nice people at RDSGurus Step By Step – Using Windows Server 2012 R2 RD Gateway with Azure Multifactor Authentication.
The problem is that I can't find any documentation which explains how to deploy MFA to a small test group, but allow production users to continue to authenticate on our RD Web Portal as usual. After following the guide, the RD Web Portal only allows users with MFA configured to authenticate, of course. We want to allow our main user group to authenticate against AD as usual-- is this easy to accomplish or even possible? If not, I will have to roll back all my work before the end of business today, so that's not optimal.