Is it right for me?
Web Application Proxy works in two main ways; it makes organisations capable of giving end users outside of an organisation selective access to applications that are hosted securely in The Bunker, and also serves as a barricade between those applications and the internet. By using AD FS, the service ensures that only users with authenticated and authorized devices can access corporate applications.
It provides reverse proxy functionality for web applications hosted in The Bunker and allows users on most devices to access internal web applications from external networks.
It is possible to configure additional features provided by AD FS, including: Workplace Join, Multifactor Authentication (MFA), and multifactor access control. Also WAP can be part of a DirectAccess infrastructure deployment, or when securely publishing Exchange or SharePoint services.