Jun 17 2020 03:41 AM - edited Jun 17 2020 03:44 AM
Hi,
I have noticed that Microsoft IP ranges in Microsoft Cloud App Security are not up to date.
I'm receiving multiple impossible travel alerts. When checking I clearly see that the IP are from Microsoft Corporation.
Normally MCAS has a list of all cloud providers dynamically with their public IP's. But this does not reflect in the activity logs.
Examples of IP's I encountered that were not dynamically tagged: 52.149.104.180, 40.68.20.47, 40.69.196.76
I'm assuming that does not require any user action to update/sync the IP ranges?
Can somebody elaborate on this issue?
Kind Regards
Louis
Nov 05 2021 07:14 AM
same here, lot of activity is show from microsoft IP addresses. It's session for user in microsoft data center to access some resources? Not sure. @Microsoft?
But solution to your problem with alerts could be tagging that IP and all similar IP's. That can be done by choosing option "Tag as corporate IP and add to whitelist".
Nov 22 2021 07:18 AM
Dec 03 2021 06:54 AM
SolutionFeb 23 2022 04:10 AM
Hi @LouisMastelinck, can you please share the 3rd party resources that help you update your IP ranges?
Dec 03 2021 06:54 AM
Solution