MS Entra ID URLs

diego.cruz(YLPH) 20 Reputation points

Good day!

We are doing FW restrictions/policy in our firewall and we need to separate the traffic going to MS Entra ID Authentication, and any related sites to keep working with MS Entra ID and M365. What are the URLs we need to allow in our FW policies?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
17,447 questions
0 comments No comments
{count} votes

Accepted answer
  1. James Hamil 18,866 Reputation points Microsoft Employee

    Hi @diego.cruz(YLPH) ,you need to allow access to the following URLs in your firewall policies:

    For Azure Virtual Desktop, you need to allow the following URLs in your firewall policies:

    • * on port 443 for Azure DNS resolution.

    Please note that this list doesn't include URLs for other services like Azure Active Directory or Office 365. Azure Active Directory URLs can be found under ID 56, 59, and 125 in Office 365 URLs and IP address ranges. That page also has a more comprehensive list incase you need it.

    Please let me know if you have any questions and I can help you further.

    If this answer helps you please mark "Accept Answer" so other users can reference it.

    Thank you,


    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful