Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Gurpreet_Kaur
Staff
Staff

Created on ‎03-05-2025 01:51 AM

Article Id 380445

Technical Tip: How to allow specific users to access Office 365 while blocking all other internet access.

Description This article describes how to add specific users to have access to Office 365 while blocking all other internet access.
Scope FortiGate.
Solution

To ensure that specific users can access Office 365 applications while blocking all other internet access, configure the correct policies for Microsoft services and their dependencies, including content delivery networks (CDNs) hosted by Akamai.

Create a Network Policy:

  1. Create a policy that allows the traffic to the identified Microsoft and Akamai domains and IP ranges.
  2. This policy can be applied to specific users based on their IP address or device profile.

 

Screenshot 2025-03-05 150403.png

 

Note:

Akamai Content Delivery Networks (CDNs) Microsoft uses Akamai's CDN for delivering certain resources to users, such as static files and media content. Therefore, it is necessary to allow Akamai domains in the policy to ensure that content is delivered efficiently and without issues.

 

After making the above changes, it is only possible to access Microsoft Office 365 while blocking all other internet access.
237
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.