Securing Azure Remediations with Conditional Access
Microsoft Azure supports location-based conditional access policies to ensure only requests made from Aqua Cloud are allowed to access your application.
This policy will restrict the application only to Aqua Cloud IP addresses. To enable this policy please follow these steps:
- Enter the Azure Active Directory service
- Select the Enterprise applications blade
- Select the Conditional Access blade
- Select Named locations
- Select New location
- Add "Aqua Cloud IP Address" to the Name
- Ensure that "IP Ranges" is selected
- Add 3.231.74.65/32 as the IP range
- Select the Create button
- Now enter the Policies Blade
- Select New Policy
- Select the Cloud apps or actions blade
- Ensure that Cloud apps is selected
- Ensure that Select apps is selected
- Click the Select blade
- Search for the "aqua-cloud-remediator" application and select it
- Click Select.
- Select the Conditions Blade
- Select the Locations Blade
- Ensure that Yes is selected
- Ensure that Selected Locations is selected
- Click the Select blade
- Select the "Aqua Cloud IP Address" that was created from before
- Select the Session blade
- Select Use Conditional Access App Control with Monitor Only
- Ensure everything is configured correctly
- Select Create
Did you find it helpful? Yes No
Send feedbackSorry we couldn't be helpful. Help us improve this article with your feedback.