Applying Conditional Access to Allow traffic from only trusted IP addresses

Question

Hi Team,&nbsp; &nbsp; &nbsp;We have requirement to access an registered application on azure cloud only from certain IP addresses of AWS cloud. What I found on conditional access policy is , we can bloack access from certain IP address ranges and Certain countries. Is it possible to specify requests should be accepted only from certain IP addressses ? Application we are planning to access is Office 365.

peterrising · Answer

AravindKonda&nbsp;
&nbsp;
Hi, yes you can allow access to M365 services with CA based on trusted locations and IP address ranges&nbsp; as described here -&nbsp;https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition#location-condition-in-policy
&nbsp;

aravindkonda · Answer

PeterRising&nbsp; Application is registered to run as background service or daemon without a signed-in user. The application is accessed from AWS cloud through Oauth2.0 authentication. Can conditional access be still applied?

peterrising · Answer

AravindKonda&nbsp;
&nbsp;
I would think probably not in those conditions.&nbsp; &nbsp;

aravindkonda · Answer

PeterRising&nbsp; Just got to know that conditional access is only allowed at user login level , not for application logging level. We are accesing mailboxes through our application , I found way of applying IP address restrction at Exchange level. Just checking if we do have any other possible solution , as we are trying to avoid applying restrictions at Exchange level. We are using MS Graph API calls for accessing mailbox. Please let me know if there is any another way.

Forum Discussion

Applying Conditional Access to Allow traffic from only trusted IP addresses

Share

Resources