Sep 30 2020 06:07 PM
Hi Team,
Is it possible to restrict ondrive for business access based on the IP of the device? This is required for a Telco who is planning to bundle this along with their connectivity options and they would like users to have access only from their network. Understand, OfB has internet end points, therefore, not sure if this is a possible scenario. If not, are there any alternate options for such a requirement?
Thanks,
Sep 30 2020 10:42 PM
Oct 01 2020 06:53 PM
Thanks for the inputs @Juan Carlos González Martín . If the AD conditional access is added, then the overall cost of the offering will go up by few more $$ for the customer. :-(.
The Telco is planning to bundle OfB with their connectivity offering, however, as the idea is to drive connectivity usage, they would like to ensure OfB is used primarily using their connectivity.
Oct 01 2020 09:50 PM
Oct 02 2020 01:43 AM
the article you shared states the following in a separate box. As AAD Conditional Access Policy restricts based on IP, wondering if this is a must to apply the IP based restrictions. In any case, I feel, for a Telco network which could be pretty vast, not sure if such a setting is viable and recommended.
Important
This feature relies on Azure AD Conditional Access policies being available. You will need an Azure AD Premium P1 or P2 subscription for this to work. For more info about this, refer to the announcement in the Azure Active Directory Identity Blog.
Thanks again for looking into this.