Home

Azure AD conditional Access.

Deleted
Not applicable

I have a scenario here.

 

1.I configure Azure AD conditional access and define a set of IP addresses to allow access for this.

2.I connect to the internet at home; VPN into my corporate network.

 

At this point; would the CA policy verify my actual IP(provided by my internet provider) and block access based on the policy OR would it take request as an IP from the VPN and allow me to access the resources on o365?

2 Replies
Highlighted
I have not tried it myself, but I think that depends on how you setup the VPN on your device;
route all traffic through the VPN or not.

Hi Peter,

 

Thank you for the response.

I did go through the whole idea of split tunelling; currently i believe the VPN is setup to route local traffic and the ISP would be responsible for the traffic on the internet browsing part;

 

With the current setup i believe accessing portal.office.com while having the VPN connected would still take the IP address provided by my ISP; however there is a catch to this and i need to do some testing;We do have ADFS setup and i believe the VPN routes the traffic to the adfs servers when authenticating to office 365; in this case the ADFS server would be a local resource that could be reached via the VPN tunnel and if that stands true then i believe the conditional access polices would allow any device that has vpned to access o365 as a whitelisted IP user.

 

I hope that makes some sense. 

Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
46 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
30 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies