Two Factor Authentication in Webserver Protection

Question

Hi, 
 I have configured our OWA server to be published via Webserver Security and it's configured to use the default Sophos login page. Is it possible it can be configured to use Two Factor Authentication, like we have done with the VPN access? (using Google Authenticator) 
 Thanks.

DouglasFoster · Accepted Answer

You enable OTP for designated users and enable it for WAF 
 At that point, any WAF site that requires authentication will require OTO for those users. 
 Have not used it, but do not see any reason that it would have compatibility issues with IWA. Activesync, however, is another animal completely.