cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Self Service Password Reset - Urls and IP address ranges

Chris Johnston
Brass Contributor

‎Apr 12 2019 01:14 AM

‎Apr 12 2019 01:14 AM

Self Service Password Reset - Urls and IP address ranges

Minimum set of Urls and IP address ranges to allow SSPR:

We have a secure environment where users access Office 365 using a VDI solution hosted in Azure. Cloud only identities are used and AD DS is implemented for logging on to VDI (Windows 2016 RDS sessions)

web filtering prevents the users from accessing Office 365 and associated services directly from their corporate devices.

This creates a situation when users are unable to access SSPR to reset their own passwords from their devices, and without valid creds they cannot log on to VDI to perform the reset from there, where access is allowed. 

We want to configure web filtering to allow access SSPR from the corporate network, without allowing access to any other services e.g. office.com

I could use network trace in Fiddler to work out the URLs but hoping for something more supportable.

Labels:
8,997 Views
0 Likes
3 Replies
Reply
3 Replies
best response confirmed by Chris Johnston (Brass Contributor)
Nandan Tripathi

‎Apr 28 2019 11:37 PM

‎Apr 28 2019 11:37 PM

Solution

Re: Self Service Password Reset - Urls and IP address ranges

@Chris Johnston SSPR network connectivity below are the two link which you need to whitelist.

The most common point of failure is that firewall and or proxy ports and idle timeouts are incorrectly configured, you need outbound HTTPS access to the following:

  • *.passwordreset.microsoftonline.com
  • *.servicebus.windows.net
0 Likes
Reply
Chris Johnston

‎Apr 29 2019 05:51 AM

‎Apr 29 2019 05:51 AM

Re: Self Service Password Reset - Urls and IP address ranges

@Nandan Tripathi thanks for providing the information. I'll configure the white listing accordingly. 

0 Likes
Reply
andreshidalgomora666

‎Sep 02 2022 07:08 AM

‎Sep 02 2022 07:08 AM

Re: Self Service Password Reset - Urls and IP address ranges

hello I am taking AZ-720 and got this question, I was not able to find a list of URLs, or anything like that ANYWHERE so can you please tell me a little bit more since all the answers none of them are like the ones u described there maybe I choose the correct options but the second one is .onmicrosoft, not  microsoftonline...thanks in advance 

 

andreshidalgomora666_0-1662127653734.png

 

0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by Chris Johnston (Brass Contributor)
Nandan Tripathi

‎Apr 28 2019 11:37 PM

‎Apr 28 2019 11:37 PM

Solution

Re: Self Service Password Reset - Urls and IP address ranges

@Chris Johnston SSPR network connectivity below are the two link which you need to whitelist.

The most common point of failure is that firewall and or proxy ports and idle timeouts are incorrectly configured, you need outbound HTTPS access to the following:

  • *.passwordreset.microsoftonline.com
  • *.servicebus.windows.net

View solution in original post

0 Likes
Reply