Versions Compared

Old Version 4

changes.mady.by.user Adam Darwin

Saved on

compared with

New Version 5

changes.mady.by.user Adam Darwin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

To set up MFA for OWA via WSFED, follow steps below

Table of Contents

Download DualShield Idp Signing Certificate 

...

Parameter

Remarks

-exchangeFQDN the external full qualified domain name of your Exchange server, e.g. mail.acme.org
-dualshieldFQDN the external full qualified domain name of your DualShield SSO server, e.g. dualshield.acme.org
-dualshieldPort the external port number of your DualShield SSO server, e.g. 8074
-idpCertFile the full path file name of your DualShield IdP certificate, e.g c:\certs\dualshieldidp.crt
-appnamethe application name in DualShield for Office 365
-spnamethe service provider name in DualShield for Office 365


Example:

...

Import IdP Certificate

If you have multiple Exchange servers, you do not need to run the PowerShell script "setup-owa-mfa.ps1" on all Exchange servers. You only need to run the PowerShell script on one of the Exchange server. The changes made by the PS will be automatically replicated to other Exchange servers, apart from the IdP certificate. Therefore, you do need to run the second PowerShell script "import-idp-cert.ps1" on other Exchange servers.