Technical Tip: How to allow specific users to access Office 365 while blocking all other internet access.

To ensure that specific users can access Office 365 applications while blocking all other internet access, configure the correct policies for Microsoft services and their dependencies, including content delivery networks (CDNs) hosted by Akamai.

Create a Network Policy:

1. Create a policy that allows the traffic to the identified Microsoft and Akamai domains and IP ranges.
2. This policy can be applied to specific users based on their IP address or device profile.

Note:

Akamai Content Delivery Networks (CDNs) Microsoft uses Akamai's CDN for delivering certain resources to users, such as static files and media content. Therefore, it is necessary to allow Akamai domains in the policy to ensure that content is delivered efficiently and without issues.

After making the above changes, it is only possible to access Microsoft Office 365 while blocking all other internet access.