Jul 11 2019 06:04 AM
Hi
We are using Office 365 Business Premium and Office365 Business Essentials which is connected to to our local domain controllers using AD Connect.
At the moment users can logon to any computer and access OneDrive / SharePoint however we would like to restrict this so access is only from Company approved computers and/or IP addresses.
Anyone know if this is possible? Is so would we be licensed for this?
Thanks
Jul 11 2019 07:23 AM
@Pn1995 the cleanest and simplest approach would be Conditional access policies but that will require you to have EMS licenses.
Without EMS you could try the following:
For the OneDrive Sync client: You could add a restriction to only allow syncing from machines that are joined to your AD Domain.
Note:With this approach, you either allow all Macs or Block All. And this does not affect Mobile devices.
https://docs.microsoft.com/en-us/onedrive/allow-syncing-only-on-specific-domains
For Browser based access: SharePoint Online does have a feature that lets you restrict access to particular IPs.
https://docs.microsoft.com/en-us/sharepoint/control-access-based-on-network-location