cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
Highlighted
Anonymous
Not applicable

Restrict access to PowerApp based on user's IP address

Hi everyone,

 

I'm currently developing a series of PowerApps that will replace our current data entry system.

 

One of the security requirements we have is to limit access to the apps based on the user's IP address. So if the user's IP address is not on a pre-approved list, they would not be able to access the apps. I've found documentation on how to restrict access to SharePoint and Portals based on a user's IP address, but nothing clear on doing it to PowerApps.

 

Is it possible to restrict access to individual apps based on a user's IP address? If it's not possible at the app level, can it be done at the environment level?

 

Thanks everyone

4 REPLIES 4
Highlighted
Super User II
Super User II

Re: Restrict access to PowerApp based on user's IP address

Hi @Anonymous ,

 

I'm sure that this cannot be done at the app level but is possible at the environment database (CDS) level.  Take a look at the following article.  I talks about Dynamics 365 but this is just CDS so should work for Power Platform environments with CDS.

 

https://docs.microsoft.com/en-us/power-platform/admin/restrict-access-online-trusted-ip-rules

 

This won't stop access to the apps but it will stop access to the underlying data in CDS.

Highlighted
Advocate V
Advocate V

Re: Restrict access to PowerApp based on user's IP address

I think you should challenge the requirement to lock down based on IP. From what i see, that is what most companies are moving away from and instead move to a modern way to secure identities, devices and data.

Highlighted
Anonymous
Not applicable

Re: Restrict access to PowerApp based on user's IP address

Hi @HSheild ,

 

Thanks for the guidance! I'm going to look into it and see if this will work for us.

Highlighted
Anonymous
Not applicable

Re: Restrict access to PowerApp based on user's IP address

Hi @MagnusGöransson ,

 

Originally, I thought that the O365 accounts were already more than enough since the only way a user can access their account is logging in with their token and then connecting to a VPN. But they wanted to apply an IP address lock as well. 

 

What are some of the other ways we could secure the apps?

 

 

Helpful resources

Announcements
Community Conference

Power Platform Community Conference

Check out the on demand sessions that are available now!

Power Platform ISV Studio

Power Platform ISV Studio

ISV Studio is designed to become the go-to Power Platform destination for ISV’s to monitor & manage published applications.

secondImage

Power Platform 2020 release wave 2 plan

Features releasing from October 2020 through March 2021

Tech Marathon

Maratón de Soluciones de Negocio Microsoft

Una semana de contenido con +100 sesiones educativas, consultorios, +10 workshops Premium, Hackaton, EXPO, Networking Hall y mucho más!

Users online (5,681)