DHCP Approval using Azure Automation and Powershell
I wanted to try to prevent someone from bringing in an unapproved device onto our local network by simply plugging it into an Ethernet jack and pulling an IP address using DHCP. Microsoft's DHCP server service has a feature named DHCP Filters included with the Windows Server DHCP Server service which allows for MAC address white/black listing. I was able to use a combination of various Microsoft and Azure features to automate the process of approving and adding MAC addresses to our whitelist. Below is an explanation of how I was able to achieve this. Resources needed: Azure Automation Hybrid Worker agent installed on DHCP server Azure Automation Runbook with a webhook to start it Microsoft Power Automation Flow (formerly Microsoft Flow) Powershell Windows Task Scheduler Microsoft Office 365 Outlook and SharePoint The first step is to configure your Windows Server DHCP service scope so that IP addresses are only provided to computers with MAC addresses in the Allow List.