Azure information protection network requirement

Question

hi folks

Just testing some features in AIP. found couple domains such as *. protection.outlook.com that needs to be reserved.
so is there a list of domains that need to be whitelisted? in order to use the whole AIP experience (Logging, authenticating. etc. )

great thanks!

Answer 1

@Minghui Zou ,

AIP client downloads the policies using the URL *.protection.outlook.com hence that needs to be opened on the firewall . In addition to this one the external connectivity to the following URLs is also required for proper functioning . The following list is taken from article on AIP On-premise scanner requirements.

• *.aadrm.com
• *.azurerms.com
• *.informationprotection.azure.com
• informationprotection.hosting.portal.azure.net
• *.aria.microsoft.com
• *.protection.outlook.com

For Auditing and logging purposes the following URLs must be accessible

• https://*.events.data.microsoft.com
• https://*.aria.microsoft.com (Android device data only)

You can check more in the section for firewall and network requirements. Hope the information in the linked articles is useful . Please accept the answer to improve the relevancy of the content for the community . In case you have further queries , please feel free to let us know.

Thank you .

----------------------------------------------------------------------------------------------------------------------------------------------------------

• Please don't forget to click on or upvote button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how
• Want a reminder to come back and check responses? Here is how to subscribe to a notification
• If you are interested in joining the VM program and help shape the future of Q&A: Here is how you can be part of Q&A Volunteer Moderators