cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
214
Views
0
Helpful
1
Replies

Application Filtering for Office365

ssan239
Beginner
Beginner

Hi Team,

What is the best way to allow access to O365 via FTD? Can i use the applications such as office 365 and allow ANY ports will allow access to Office 365 apps? Is it any Security risk? Or any other best way other than this?

Regards,

Sanjay S

1 Reply 1

urathod
Cisco Employee
Cisco Employee

When allowing access to Office 365 (O365) via Cisco Firepower Threat Defense (FTD), it's important to balance security and usability. Allowing any ports for O365 may introduce potential security risks. Instead, it's recommended to use more granular controls to ensure secure access. Here are a few best practices:

  1. Use Application Filtering: FTD supports application-layer filtering, allowing you to define policies based on specific applications. You can create an application filter for Office 365, which will automatically identify and allow the necessary ports and protocols required for O365 services.

  2. Utilize Microsoft's Recommended Network Connectivity Principles: Microsoft provides recommendations for network connectivity to O365, which include allowing access to specific URLs, IP addresses, and ports. You can refer to the official Microsoft documentation for the specific requirements and implement them in your FTD policies.

  3. Enable SSL Decryption: O365 traffic is often encrypted using SSL/TLS. Enabling SSL decryption on your FTD allows you to inspect the encrypted traffic for security purposes, providing visibility into potential threats and allowing you to enforce security policies effectively.

  4. Implement User-Based Policies: Consider implementing user-based policies to control access to O365 based on user identities or groups. This allows you to enforce fine-grained access control and restrict access to O365 services based on user roles and privileges.

If you find my reply solved your question or issue, kindly click the 'Accept as Solution' button and vote it as helpful.

You can also learn more about Secure Firewall (formerly known as NGFW) through our live Ask the Experts (ATXs) session. Check out Cisco Network Security ATXs Resources [https://community.cisco.com/t5/security-knowledge-base/cisco-network-security-ask-the-experts-resources/ta-p/4416493] to view the latest schedule for upcoming sessions, as well as the useful references, e.g. online guides, FAQs.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: