This is an automated archive.
The original was posted on /r/sysadmin by /u/SYS-GURU on 2024-01-22 20:30:59+00:00.
We're a Microsoft 365 shop using strict conditional access polices. I have a client has several consultants that travel to various countries and need access to 365 apps. We ask them to get a VPN service and connect to our geographical location. In some cases, I create a temporary policy when they depart and return.
I was thinking about creating an on-prem WireGuard or OpenVPN server on our firewall for them to use when they need access to 365 resources. I'm wondering if there are other considerations I should keep in mind and If 365 conditional access uses laptop/phone GPS to determine if the conditions are met or not.