ADFS policies for specific Office 365 services

Brass Contributor

Is there a way to create ADFS policies for individual Office 365 services?  I have been asked to see if we can lock down our Sharepoint online site to only our IP space.  I know this can be done through the admin console in sharepoint, but I am wondering if it can be done through ADFS policies.  We use adfs 3.0.  I know you can have polices for Active Sync and such but can we do them based on Sharepoint, OWA, etc...?

1 Reply

No. Any rules you create will apply to the RPT as a whole, and you cannot distinguish SPO resources from say the O365 portal. Use the settings in the SPO admin center, or a conditional access policy scoped down to only SPO.


The reason policies can target ActiveSync is the different flow used when connecting to Exchange Online, and the additional claims added there. You cannot use this for other resources.