• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 125
  • Last Modified:

Office 365 and SharePoint Online

We are in the process of moving to O365 and SharePoint online (SP).   Since out SP site contains PHI and also functions as our Intranet, we want to restrict the access to only users that are connected to their VDI desktop.  We don't want to have users connecting to our SP from home or anywhere else.  

We have Azure AD Connect and Okta in place. Okta has a way to restrict the IP space if the app knows about Okta and we have done this.  However, I can still access SP from home.  

I am sure that we are not the first to request this.
1 Solution
Vasil Michev (MVP)Commented:
You cannot really block access to SharePoint Online only, without affecting other services. AD FS, Okta or other identity providers can help you restrict the authentication process to specific IPs only, but that will mean blocking access to the whole of O365 (well, most of it anyway).

Instead going this route, see if AzureAD conditional access matches your requirements: https://blogs.technet.microsoft.com/enterprisemobility/2016/07/28/azuread-conditional-access-per-app-mfa-and-network-location-based-policies-are-ga/
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

The 14th Annual Expert Award Winners

The results are in! Meet the top members of our 2017 Expert Awards. Congratulations to all who qualified!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now