100278_act REQ { HOST: login\.microsoftonline\.com|login\.microsoft\.com|login\.windows\.net EVENT: { OP: HEADER_ADD HEADER: Restrict-Access-To-Tenants VALUE: your-allowed-Tenants } EVENT: { OP: HEADER_ADD HEADER: Restrict-Access-Context VALUE: your-allowed-Context }

Adding headers on HTTP requests and restricting tenants for Office 365 in InterScan Web Security Virtual Appliance

Product / Version includes:

Interscan Web Security Virtual ApplianceAll

Last updated: 2021/08/28

Solution ID: KA-0011782

Category: Configure

Summary

Restrict tenants for Microsoft Office 365, and add two (2) headers on HTTP requests when the traffic passes through InterScan Web Security Virtual Appliance (IWSVA).

For every request going to Microsoft login sites, we will insert two HTTP headers: Restrict-Access-To-Tenants and Restrict-Access-Context.

To restrict tenants for Office 365 , apply an HTTP Inspection policy:

Go to HTTP > HTTP Inspection > Filters.
Under the Inspection Filter section, enter a Filter Name.

Tick the Advanced View radio button, then copy and paste the following expression in the Patterns field:

100278_act REQ {
HOST: login\.microsoftonline\.com|login\.microsoft\.com|login\.windows\.net
EVENT:

{ OP: HEADER_ADD HEADER: Restrict-Access-To-Tenants VALUE: your-allowed-Tenants }
EVENT:

{ OP: HEADER_ADD HEADER: Restrict-Access-Context VALUE: your-allowed-Context }

Replace "your-allowed-Tenants" and "your-allowed-Context" with your allowed tenants and context.

Go to HTTP Inspection > Policies, and make sure the newly created filter is set to Allow Scan.
Save and deploy the policies to the clients.

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Adding headers on HTTP requests and restricting tenants for Office 365 in InterScan Web Security Virtual Appliance

Adding headers on HTTP requests and restricting tenants for Office 365 in InterScan Web Security Virtual Appliance

Product / Version includes:

Summary