Conditional Access Policy - ServiceAccounts-ResourceAdminTool
The ServiceAccounts-ResourceAdminTool policy is intended to restrict access to M365 for members of O365_ResourceAdminTool_ServiceAccountss to certain IP's / IP ranges.
Assignments
User or workload identities
Included - members of O365_ResourceAdminTool_ServiceAccounts
Excluded - members of Surface.Hub.Conditional.Access.Bypass.Group@austin.utexas.edu
Cloud apps or actions
All cloud apps
Conditions
Locations - ALL except 'UTEXAS NAT - Public Addresses', 'UTEXAS VPN - ITS Systems Private Group'
Client apps - all selected
Access controls
Grant
Block access
Session
0 controls selected