Skip to content

How to Whitelist IP Addresses for Multi-Factor Authentication

< 1 minute read

purp security

Requiring multi-factor authentication (MFA) on employee computers is an important security measure for many reasons, however, it may not always be necessary. If your organization currently enforces MFA and you want to remove the hassle of requiring several passwords, then whitelisting specific IP addresses is a way to exclude certain locations or computers.

Many administrators whitelist the public IP addresses of their offices because they are generally treated as trusted locations and don’t need the extra security. However, remote or traveling employees that access Office 365 in unknown locations may need to keep MFA requirements to protect the corporate network.

To whitelist specific IP addresses within your tenant, follow the steps above in the video and below here:

  1. Go to the Admin tab.
  2. Scroll to Azure AD on the left hand side.
    • Click Azure AD and a new tab will launch.
  3. Once you are on the homepage, select your tenant.
  4. Select Configure.
  5. Scroll to Multi-Factor Authentication.
  6. Select Manage service settings.
    • A new window will appear.
  7. Under trusted IPs, click in the text box and type the IP address or range of address you want to exclude from MFA.
  8. Select Save and a new window will confirm your changes.

Read more about enabling or disabling multi-factor authentication for your tenant.

Sign up for our newsletter