As a PoC, i've created a small test environment with point-to-site connectivity, without MFA i was able to connect without issue. I am looking at using Safenet for MFA.
The current setup is two windows servers, one acting as the dedicated radius server which redirects requests to the AD which is also hosting NPS. The Azure point-to-site config is pointing at the dedicated radius server.
My issue is that when i try and connect to the VPN i can see a successful auth within safenet but the connection fails with error code 691. Is there anything specific i need to setup within Azure to work with the response from Safenet, or do i need to supply some combination of the ad user password and OTP from safenet to connect successfully?
