I want to achieve the following:
When a user logs (let's say on url path \login\*) on from a trusted
network there will be no authentication procedure.
For that I configured a protected resources with no authentication and
an authorization policy with x-forwarded-for to determine where the
client is connecting from. This is works fine.

Now I want, if a user is connection to the same url path from untrusted
network (internet), that there will be a secure login form presented to
the user. How can I achieve that?

gschouten32's Profile: https://forums.netiq.com/member.php?userid=2546
View this thread: https://forums.netiq.com/showthread.php?t=56414