Microsoft Entra Suite Tech Accelerator
Aug 14 2024, 07:00 AM - 09:30 AM (PDT)
Microsoft Tech Community

How to restrict access to D365 Customer Insights to company network (IP range)

Copper Contributor



I'd like to ask if anyone here knows a way to restrict access to the Customer Insights app so that users can access this cloud app only if they are doing it from within our own network?


We were able to set up an AAD Conditional Access policy to achieve this for other Dynamics 365 apps by restricting access for the Common Data Service. But I don't find an appropriate app to select for restriction of Customer Insights. Do we have to restrict something different to achieve this or do we have to use another feature or is it not possible to do what we want?


Our data protection officer told us that we have to seal our D365 cloud apps off first before we may upload sensitive customer data to/through it. That way we can easily make sure (more or less) that users use controlled devices and controlled client apps and filtered LAN/VPN that prohibits them from accidentally or intentionally leaking sensitive data to other services etc.


I appreciate every hint. Thanks in advance.


1 Reply
MDCA (MCAS) would not be a recommended solution here. I do understand the challenge, because I have covered similar with customers before and it really is an Azure AD scenario. My recommendation is to open a support case for D365 CI and ask them which app in Conditional Access should be used to get this control.

Hope this helps.