Applies to: Nerdio For Azure (NFA) customers only
When you first provision a new NFA account, you need to authorize Nerdio to connect to your:
- Microsoft Azure tenant
- Microsoft 365 tenant
During the provisioning process, Nerdio creates two user accounts – one for Azure and one for Microsoft 365. Since Nerdio integrates with Azure and Microsoft 365 via APIs and Powershell, enabling MFA can restrict access to Azure or Microsoft 365. To prevent that from happening, you must whitelist these two subnets:
69.8.122.0/24
52.162.85.208/28
See this KB article from Microsoft for more info on Trusted IPs
Note: If you implement "Conditional Access policy" to prevent PowerShell access by non-authorized users, you must exclude NerdioAzureAdminXXXX and NerdioM365AdminXXXX users from the policy.
Comments (0 comments)