Lockdown SharePoint Onedrive access to certain IP / computers

%3CLINGO-SUB%20id%3D%22lingo-sub-750049%22%20slang%3D%22en-US%22%3ELockdown%20SharePoint%20Onedrive%20access%20to%20certain%20IP%20%2F%20computers%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-750049%22%20slang%3D%22en-US%22%3E%3CP%3EHi%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20are%20using%26nbsp%3B%26nbsp%3BOffice%20365%20Business%20Premium%20and%20Office365%20Business%20Essentials%20which%20is%20connected%20to%20to%20our%20local%20domain%20controllers%20using%20AD%20Connect.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAt%20the%20moment%20users%20can%20logon%20to%20any%20computer%20and%20access%20OneDrive%20%2F%20SharePoint%20however%20we%20would%20like%20to%20restrict%20this%20so%20access%20is%20only%20from%26nbsp%3BCompany%20approved%20computers%20and%2For%20IP%20addresses.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAnyone%20know%20if%20this%20is%20possible%3F%20Is%20so%20would%20we%20be%20licensed%20for%20this%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-750049%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EMicrosoft%20365%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOneDrive%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-750059%22%20slang%3D%22en-US%22%3ERe%3A%20Lockdown%20SharePoint%20Onedrive%20access%20to%20certain%20IP%20%2F%20computers%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-750059%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F272339%22%20target%3D%22_blank%22%3E%40Pn1995%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThere%20is%20an%20option%20to%20restrict%20signins%20by%20IP%20Address%3A%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fsharepoint%2Fcontrol-access-based-on-network-location%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fsharepoint%2Fcontrol-access-based-on-network-location%3C%2FA%3E%3C%2FP%3E%3CP%3EBut%20that%20can%20be%20quite%20restrictive.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-750069%22%20slang%3D%22en-US%22%3ERe%3A%20Lockdown%20SharePoint%20Onedrive%20access%20to%20certain%20IP%20%2F%20computers%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-750069%22%20slang%3D%22en-US%22%3E%3CP%3EYou%20may%20also%20want%20to%20consider%20using%20Azure%20AD%20Conditional%20Access%20to%20enforce%20MFA%20for%20unmanaged%20devices.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F272339%22%20target%3D%22_blank%22%3E%40Pn1995%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Contributor

Hi 

 

We are using  Office 365 Business Premium and Office365 Business Essentials which is connected to to our local domain controllers using AD Connect.

 

At the moment users can logon to any computer and access OneDrive / SharePoint however we would like to restrict this so access is only from Company approved computers and/or IP addresses.

 

Anyone know if this is possible? Is so would we be licensed for this?

 

Thanks

2 Replies
Highlighted

@Pn1995 

 

There is an option to restrict signins by IP Address: 

https://docs.microsoft.com/en-us/sharepoint/control-access-based-on-network-location

But that can be quite restrictive.

Highlighted

You may also want to consider using Azure AD Conditional Access to enforce MFA for unmanaged devices.

 

@Pn1995