Office 365 and SharePoint Online

We are in the process of moving to O365 and SharePoint online (SP).   Since out SP site contains PHI and also functions as our Intranet, we want to restrict the access to only users that are connected to their VDI desktop.  We don't want to have users connecting to our SP from home or anywhere else.  

We have Azure AD Connect and Okta in place. Okta has a way to restrict the IP space if the app knows about Okta and we have done this.  However, I can still access SP from home.  

I am sure that we are not the first to request this.
cwalker007Asked:
Who is Participating?
 
Vasil Michev (MVP)Connect With a Mentor Commented:
You cannot really block access to SharePoint Online only, without affecting other services. AD FS, Okta or other identity providers can help you restrict the authentication process to specific IPs only, but that will mean blocking access to the whole of O365 (well, most of it anyway).

Instead going this route, see if AzureAD conditional access matches your requirements: https://blogs.technet.microsoft.com/enterprisemobility/2016/07/28/azuread-conditional-access-per-app-mfa-and-network-location-based-policies-are-ga/
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.