question

sajithgh avatar image
0 Votes"
sajithgh asked EmilyDu-MSFT commented

Control access to SharePoint Site only based on network location


Using Access control under SharePoint Admin URL, we can restrict based on network location.

https://docs.microsoft.com/en-US/sharepoint/control-access-based-on-network-location

After we apply, it affects workloads like teams, one drive etc. We want to restrict only one SharePoint Site URL ? Is it achievable ?

We tried to apply access control policies on SharePoint admin center to Allow access only from specific IP address, but this is affecting the other applications like OneDrive and Teams recording etc.

office-sharepoint-online
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

EmilyDu-MSFT avatar image
0 Votes"
EmilyDu-MSFT answered EmilyDu-MSFT commented

@sajithgh

Per my knowledge, only setting control access based on network location for one SharePoint site is not available. Since this is an overall setting, it has an effect on the entire SharePoint and related apps.

According to this article,

Access from first and third-party apps: Normally, a SharePoint document can be accessed from apps like Exchange, Yammer, Skype, Teams, Planner, Power Automate, PowerBI, Power Apps, OneNote, and so on. When a location-based policy is enabled, apps that do not support location-based policies are blocked. The only apps that currently support location-based policies are Teams, Yammer, and Exchange. This means that all other apps are blocked, even when these apps are hosted within the trusted network boundary. This is because SharePoint cannot determine whether a user of these apps is within the trusted boundary.


If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


· 4
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

For protecting access to SharePoint via the Office.com portal we recommend using the Azure Active Directory conditional access policy for "Office 365" and configuring the trusted IP range there. (From the above URL). Is it possible via Conditional Access Policy ?

0 Votes 0 ·

@sajithgh

According to this Microsoft article,

Cloud apps, actions, and authentication context are key signals in a Conditional Access policy. Conditional Access policies allow administrators to assign controls to specific applications, actions, or authentication context.

To know more about Conditional Access policy, please start a new discussion with the tag "azure-active-directory" so that you can get dedicated support on this issue.


0 Votes 0 ·