Azure AD user-sign IP address before NAT

Giuseppe Bottani 1 Reputation point


Azure AD user sign-in seems to record the public IP address of my clients, therefore after NAT. If many users are behind a Firewall/router for broadband access they all have the same IP.

Is there a way to record the private IP address too?

The reason is per-user security policy and logging based on AD username.

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
16,675 questions
{count} votes

1 answer

Sort by: Most helpful
  1. James Hamil 17,771 Reputation points Microsoft Employee

    Hi @Giuseppe Bottani , the product group got back to me and confirmed ESTS does not get the pre-NAT IP. I suggest filing a feature request here. Hopefully it will become an option in the future.