This section describes how to enforce Banyan’s zero trust security policies for public applications integrated with Azure AD. If you’re looking to configure Banyan so your end-users can use Azure AD SSO to authenticate with Banyan, go to the section on configuring your Azure AD IDP to manage your directory of users.

As described in the overview on securing public applications with Banyan, Banyan offers two techniques to provide zero-trust security for SaaS applications - IP Allowlisting and Authentication Federation. These techniques can be applied at your Identity Provider (IDP) or at the SaaS Application itself.

The follow article provide step-by-step directions to configure your Azure AD IDP to enforce zero-trust security policies via Banyan:

• IP Allowlisting to enforce zero trust policies for specific SaaS Applications integrated with Azure AD

• IDP Federation to enforce zero trust policies on all SaaS Applications integrated with Azure AD