365 Sharepoint governance

Kevin Decker 1 Reputation point
2021-02-08T23:20:54.753+00:00

Scenario: We have a group of users that will be moving to SharePoint on 365, this group can only have access to the SharePoint site when located at certain devices (ex. main office, satellite locations etc. but on network) and can not have access to it from home etc.

I know you can restrict access by IP’s but that does it for everyone in the org which overreaches what we are looking to accomplish. Any help is greatly appreciated!

Note: GCC tenant !

SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
9,825 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. ChelseaWu-MSFT 6,316 Reputation points
    2021-02-09T01:17:13.733+00:00

    Consider applying access control from unmanaged devices via SharePoint admin center to achieve device restriction.

    You can block or limit access from untrusted device by creating device security policies on all users or selected (group of) users in Basic Mobility and Security.
    Please note that blocking or limiting access on unmanaged devices relies on Azure AD conditional access policies, and you will need an Azure AD Premium P1 license to use this feature.

    For detailed information and tutorials, please refer to the documents below:
    Control access from unmanaged devices.
    Create device security policies in Basic Mobility and Security


    If an Answer is helpful, please click "Accept Answer" and upvote it.
    **Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread. **