Can Azure AD Application Proxy be used for publising Exchange on-premise
Can Azure AD Application Proxy be used for publishing Exchange on-premise (2013 / 2016). I have came across guidelines for SharePoint and RD gateway on https://blogs.technet.microsoft.com/applicationproxyblog/, however not able to find it for exchange
Please also send your feedback to the Exchange team to help support this feature (https://blogs.technet.microsoft.com/exchange/).
Totally support this, can we leverage AAP to publish all Exchange virtual directories such as EWS, ActiveSync and Autodiscover? There are guides on how to hide OWA and ECP behind AAP to get MFA support, but this leaves the other directories exposed to the public internet and you need to maintain reverse proxies on-premise etc.
Jongeneel, Gertjan commented
Would be very nice to have official support for Azure AD Application Proxy and Exchange.
Michael Ward commented
I would love to use this solution as well. please let me know when you have released the documentation
Chris Moore commented
+1 - there's a few guides / threads about enabling OWA specifically via AADAP, but that's only one small part of the story.
Consideration around all Exchange virtual directories needs to be made to understand whether AADAP is a viable replacement for traditional reverse proxy solutions. i.e. What to do with things like Autodiscover, ECP, EWS, MAPI, OWA etc... Different endpoints will naturally need to have different rules & configuration applied.
Sam Miller commented
OWA info here but not sure if EWS can work... http://jackstromberg.com/2016/06/enable-sso-single-sign-on-to-on-premises-exchange-owa-outlook-web-access-via-azure-ad-application-proxy/