Hi everyone. I'm looking for the best way to lockdown HTTPS traffic to a VM for internal staff only.
We have an Azure VM with an IIS website which is for internal staff access only. We have an Azure AD only environment with E5 licenses. Intune is rolled out to all Windows 10 machines. We are using Conditional Access at the Enterprise Application level, but this does not block traffic at the port level.
The VM has an NSG configured to allow HTTPS (no Firewall configured yet).
What is the best way to implement Conditional Access to the HTTPS port, for Compliant Intune devices only?