You can use Client Access Rules:
https://learn.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/client-access-rules/client-access-rules
How to geo block exchange online logins when not using Conditional acess
is this possible to do if we do not have any conditional access enabled?
2 answers
Sort by: Most helpful
-
Andy David - MVP 144K Reputation points MVP
2022-02-18T20:21:34.22+00:00 -
Joyce Shen - MSFT 16,646 Reputation points
2022-02-21T05:38:28.357+00:00 Hi @dirkdigs
Yes, you could consider using Client Access Rules which allows us to control access to Exchange Online based on based on IP address (IPv4 and IPv6), authentication type, and user property values, and the protocol, application, service, or resource that they're using.
And the Procedures for Client Access Rules in Exchange Online
Below links also provide some examples and tips about using this feature:
Client Access Rules for Exchange Online
How to block access to your Exchange Online organization using Client Access Rules
Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.