Forum Discussion

Copper Contributor

Oct 09, 2020

Applying Conditional Access to Allow traffic from only trusted IP addresses

Hi Team, We have requirement to access an registered application on azure cloud only from certain IP addresses of AWS cloud. What I found on conditional access policy is , we can bloack access ...

Access Management

Azure Active Directory (AAD)

microsoft 365

PeterRising

MVP

Oct 10, 2020

AravindKonda

Hi, yes you can allow access to M365 services with CA based on trusted locations and IP address ranges as described here - https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/location-condition#location-condition-in-policy

AravindKonda
Copper Contributor
Oct 14, 2020
PeterRising Application is registered to run as background service or daemon without a signed-in user. The application is accessed from AWS cloud through Oauth2.0 authentication. Can conditional access be still applied?
- PeterRising
  MVP
  Oct 14, 2020
  AravindKonda
  
  I would think probably not in those conditions.
  - AravindKonda
    Copper Contributor
    Oct 14, 2020
    PeterRising Just got to know that conditional access is only allowed at user login level , not for application logging level. We are accesing mailboxes through our application , I found way of applying IP address restrction at Exchange level. Just checking if we do have any other possible solution , as we are trying to avoid applying restrictions at Exchange level. We are using MS Graph API calls for accessing mailbox. Please let me know if there is any another way.