Whitelist URLs for specific company's SharePoint & OneDrive

FotS 86 Reputation points
2023-03-20T21:46:58.7733333+00:00

I recently setup a VM to act as a shared resource for some software in our company. For security (and discouraging use of this VM for anything but what's intended) reasons, we cut off general internet access to it via GPO proxy settings (followed this guide here: https://thesysadminchannel.com/how-to-restrict-internet-access-using-group-policy-gpo/).

We do, however, want to allow access to our company's SharePoint and OneDrive from this VM, so I'm attempting to modify the ProxyOverride reg key to whitelist these. I've managed to figure out the urls for the sign-in page (from here: https://learn.microsoft.com/en-us/azure/azure-portal/azure-portal-safelist-urls?tabs=public-cloud; login.microsoftonline.com and aadcdn.msftauth.net seem to do the trick), but I haven't been able to get our company's SharePoint or OneDrive pages properly whitelisted, yet. With the various URLs I've tried, I can get the page to not come up saying blocked, but it doesn't load past a blank page and the URL changes to include an error correlation ID, so I'm guessing I'm missing some still.

I've tried the various URLs listed under the SharePoint section here: https://learn.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-worldwide

Does anyone know which ones are actually needed?

Azure Firewall
Azure Firewall
An Azure network security service that is used to protect Azure Virtual Network resources.
653 questions
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.