Step 3: Configuring a Conditional Access Policy to Require Zero Trust Network Access

Jamf Connect Documentation
Solution
Application
Jamf Connect
Content Type
Technical Documentation
Utilities & Services
ft:locale
en-US
  1. In the Conditional Access panel, click Policies.
  2. Click New policy.
  3. Enter a Name, such as Zero Trust Network Access only.
  4. Click Assignments, then choose the users to whom the policy should apply.
    Note:

    Jamf recommends that you start with a set of test users before applying the rule to all users.

  5. Click Cloud apps or actions, then include the apps that should only be accessible via Zero Trust Network Access.

    Use the app named "Office 365" to include key Office 365 with a single selection.

  6. Click Conditions, then click Locations.
  7. Click Yes for Configure.
  8. Under Include, select Any Location.
  9. Under Exclude, select Selected Locations and choose the location of the Jamf trusted IPs that you created previously.
  10. Click Select.
  11. Under Access Controls > Grant, select Block Access.
  12. Click Select.
  13. For Enable Policy, select Report Only or On as required.
  14. Click Save.
    Note:

    The setting must be set to On for the feature to take effect.