Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2246
Views
5
Helpful
5
Replies

Office365 access for only a specific domain

David Niemann
Level 3
Level 3

‎09-23-2015 02:17 PM

Is it possible to only allow access in Office365 for a particular customer defined in the URL? For these two below there is an Email=UID@companyname.onmicrosoft.com and then Realm=companyname.onmicrosoft.com.  Can I create a custom URL match to just allow office365 when one of those two are in the URL?

 

Example:

Sep 23 14:27:49 <proxynameremoved> accesslogs_syslog: Info: 1443032869.038 1 <IPaddressremoved> TCP_DENIED_SSL/403 0 GET https://outlook.office365.com:443/owa/service.svc/s/GetPersonaPhoto?email=UID@CompanyName.onmicrosoft.com&UA=0&size=HR96x96 "UserRemoved" NONE/- - BLOCK_WEBCAT_12-ITOServiceDesk-ITODesktops-DefaultGroup-NONE-NONE-NONE <IW_pem,3.4,-,"-",-,-,-,-,"-",-,-,-,"-",-,-,"-","-",-,-,IW_pem,-,"-","-","Unknown","Unknown","-","-",0.00,0,-,"-","-",-,"-",-,-,"-","-"> -

 

Sep 23 14:28:23 <proxynameremoved> accesslogs_syslog: Info: 1443032902.170 5 <IPaddressremoved> TCP_DENIED_SSL/403 0 GET https://outlook.office365.com:443/ecp/UsersGroups/EditMailbox.aspx?exsvurl=1&mkt=en-US&Realm=CompanyName.onmicrosoft.com&id=1adbacf4-c753-478b-8292-395b5e93928b "<UIDremoved>" NONE/- - BLOCK_WEBCAT_12-ITOServiceDesk-ITODesktops-DefaultGroup-NONE-NONE-NONE <IW_pem,3.4,-,"-",-,-,-,-,"-",-,-,-,"-",-,-,"-","-",-,-,IW_pem,-,"-","-","Unknown","Unknown","-","-",0.00,0,-,"-","-",-,"-",-,-,"-","-"> -

Labels:
0 Helpful
5 Replies 5

Enda McGahern
Level 1
Level 1

‎07-07-2016 07:31 AM

Hi David,

Facing the same challenge where i want users to only be able to login to one Office365 domain to access one exchange mailbox, but not any other. 

Did you figure out a solution? 

Can it be done with a regular expression?

Cheers

Enda

0 Helpful

Handy Putra
Cisco Employee
Cisco Employee

‎07-07-2016 06:46 PM

can you try to use below Regular expressions in the custom URL category to match the link:

\email=UID@CompanyName.onmicrosoft.com
\Realm=CompanyName.onmicrosoft.com

0 Helpful

David Niemann
Level 3
Level 3
In response to Handy Putra

‎07-07-2016 08:05 PM

I'll try this.

Enda McGahern
Level 1
Level 1

‎07-14-2016 09:09 AM

Hi Handy,

There is a sequence of URL's to allow for this that seem to be as follows. 

https://login.microsoftonline.com (Used to sign in and link allowed via web category)

https://portal.office.com/Home (Office365 menu allowed via web category)

https://outlook.office.com/owa/?realm=mydomain.ie

(there is sometimes random data after the domain name.

Can you suggest regular expression for this URL

https://outlook.office.com/owa/?realm=mydomain.ie

When you click on an email to open in a new window, it appears to always use

https://outlook.office.com/owa/projection.aspx

Thank you.

Enda

0 Helpful

Handy Putra
Cisco Employee
Cisco Employee
In response to Enda McGahern

‎07-17-2016 09:26 PM

You can try to use regular expression of:

/*\?realm=mydomain.ie

you can change the "mydomain.ie" to your domain name.

You can allow access to that link(regex) and block the rest (for example)

hope this helps

0 Helpful
Customers Also Viewed These Support Documents