Tootfinder

Opt-in global Mastodon full text search. Join the index!

@deepthoughts10@infosec.exchange
2025-05-21 17:35:47

tl;dr: Block logins from Tor Exit Nodes using Conditional Access
One thing we (as a community) lost when we started using IdP’s like #EntraID was the ability to easily block networks and IP addresses from accessing your login pages. The work-around with Entra is to create Conditional Access Network Locations along with a policy to block successful logins from those IPs and networks.

Microsoft Entra login message that says “You cannot access this right now”

Conditional Access Policies to Block Tor IPs — Lab539
How to create a conditional access policy in Microsoft Entra ID that blocks logins from Tor exit node IP addresses.