We are using TMG as a reverse proxy. We want to use custom authentication (out of band SMS or email) to authenticate users. We intend to achieve this by directing the user to a custom web app which handles authentication.
From what I understand TMG supports authentication integration with AD, SecurID etc. Does it also support authentication from a custom web application. What are the possible ways this can be achieved?