Ensure Trusted Locations Are Defined
Why This Matters
Without defining trusted locations, organizations cannot enforce conditional access policies that differentiate between trusted and untrusted network sources. This gap allows users to authenticate from any IP address with the same access requirements, increasing the risk of unauthorized access from compromised or unmanaged networks. Defining trusted IP ranges gives administrators granular control to apply stricter authentication requirements for untrusted locations while reducing friction for users on known networks.
What Aether365 Checks
This check verifies that at least one named location with trusted IP ranges has been defined in Microsoft Entra ID Conditional Access. Aether365 will flag this as a finding in the ENTRA.1114 check under your entra-id compliance dashboard if no trusted locations are configured.