We use some condional access policies that used named locations. These are standard for all of our clients. When we sync the policy it does not sync the locations that the policy references.
Feature Request: Create/Sync Named locations
1
Hi Jim Hutchinson. Since Conditional Access policies have many customer specific attributes, we've been looking at ways to improve the experience with those from the global MSP level. I like the suggestion where we could sync the named locations to customer accounts. The challenge here is, do you also have to deal with customer specific named locations? Or are these different policies with a different set of named locations?
We have one conditional access policy that is exactly the same for the majority of our clients. This is a country block Policy that only allows access from a list of countries. It would be nice to be able to sync this.
I could see this being useful for other shared locations such as data centers.
We could also use it keep a list of IPs for our offices and only allow admin access from that IP for all of our clients. Right now that would be impossible to keep updated. But if we could sync changes to all our clients at once that could really increase security for our clients.
We limit our polices to doing one thing so each policy would have a differnet named locations.
Please sign in to leave a comment.
Comments (2 comments)