Hi
I deployed Work folders using this article: https://docs.microsoft.com/pl-pl/windows-server/storage/work-folders/work-folders-overview. In this article is useed the same DNS zone for Intranet and Internet (split DNS zone) so External URL and Backend Server URL for work folders service are the same. It is usefull when Work Folders settings are deployed by GPO but in AD FS settings URL for Internal and External URL for work Folders are the same.
Primary Authentication list AD FS for Intranet contain Forms Authentication and Windows Authentication. With Windows Authentication users using domain user account don't need to write password for Work Folders. But the have to. It looks like they use Form Authentication when computers are in Internet or in company.
In step "Publish the Work Folders web application" author useOAuth2 authentication (https://docs.microsoft.com/pl-pl/windows-server/storage/work-folders/deploy-work-folders-adfs-step4).
During configuration Work Folders on computer (https://docs.microsoft.com/pl-pl/windows-server/storage/work-folders/deploy-work-folders-adfs-step5) there is a sentence:
If the user is connected to the corporate network, the authentication is performed by Windows Integrated Authentication.Jeśli użytkownik nie jest połączony z siecią firmową, uwierzytelnianie jest wykonywane przez usług AD FS (OAuth) i zostanie wyświetlony monit o poświadczenia.If the user is not connected to the corporate network, the authentication is performed by ADFS (OAuth) and the user will be prompted for credentials.Wprowadź swoje poświadczenia, a następnie kliknij przycisk OK.Enter your credentials and clickOK.
How system or Web App Rpoxy recognise if computer is connected to corporate network or not?
How to set it up Windows Integrated authentication (when computer joined to AD domain) when computer is connected to corporate network?
Kind Regards Tomasz