Network Endpoints Reference List for M365 Copilot

Overview

This comprehensive spreadsheet provides IT administrators with a complete reference of network endpoints required for Microsoft 365 Copilot operation in government environments. Essential for firewall configuration, proxy allowlisting, and network security planning.

What’s Included

Tab 1: GCC Endpoints

• Copilot orchestration service endpoints
• Azure OpenAI Service URLs for GCC
• Microsoft Graph API endpoints
• Supporting M365 service endpoints
• Required ports and protocols

Tab 2: GCC High Endpoints

• GCC High-specific Copilot endpoints
• Azure Government Cloud URLs
• Isolated service endpoints
• Conditional access service URLs

Tab 3: DoD Endpoints

• DoD-specific Azure endpoints
• DISN routing requirements
• Approved IP ranges for DoD environments
• Special handling requirements

Tab 4: Optional Endpoints

• Endpoints for enhanced features (not required for basic functionality)
• Telemetry and diagnostic endpoints
• CDN and optimization endpoints
• Third-party integration endpoints

Tab 5: Testing & Validation

• Test URLs for connectivity verification
• PowerShell scripts for endpoint testing
• Expected response codes
• Troubleshooting flowcharts

Spreadsheet Features

Each Endpoint Includes:

• FQDN: Fully qualified domain name
• IP Range: Current IP addresses (updated monthly)
• Port/Protocol: Required ports (443, 80, etc.) and protocols
• Category: Service type (Copilot, Graph, Auth, etc.)
• Priority: Critical, recommended, or optional
• Purpose: Brief description of endpoint function
• Environment: GCC, GCC High, DoD, or all

Filterable Columns

• Filter by environment to see only relevant endpoints
• Filter by priority for phased implementation
• Filter by category for troubleshooting specific issues

Version Tracking

• Change log tab documenting updates
• Historical endpoint changes
• Deprecated endpoints marked clearly

How to Use This Resource

For Initial Deployment:

1. Filter by your environment (GCC/GCC High/DoD)
2. Filter for “Critical” priority endpoints
3. Submit firewall change requests for all critical endpoints
4. Validate connectivity using test scripts provided
5. Add “Recommended” endpoints for full functionality

For Troubleshooting:

1. Identify which Copilot feature is failing
2. Filter by category matching that feature
3. Verify connectivity to those specific endpoints
4. Check test scripts for validation

For Ongoing Maintenance:

1. Subscribe to endpoint update notifications
2. Download updated spreadsheet monthly
3. Review change log for new or modified endpoints
4. Plan firewall rule updates accordingly

Automation Scripts

Included PowerShell scripts for:

• Testing connectivity to all endpoints
• Generating firewall rule documentation
• Auditing current proxy configuration
• Validating DNS resolution

Target Audience

• Network administrators configuring firewalls and proxies
• IT security teams reviewing network requirements
• Cloud architects planning Copilot deployment
• Helpdesk staff troubleshooting connectivity issues

Technical Level

Intermediate - Requires network administration knowledge and access to firewall/proxy management.

Updates

This endpoint list is updated monthly to reflect:

• New Copilot service endpoints
• IP address range changes
• Deprecated endpoints
• Environment-specific modifications

Current Version: 3.0 (October 2024)
Next Update: November 15, 2024

Companion Resources

• Deployment Checklist
• Hybrid Architecture Guide
• Troubleshooting Common Issues video
• Network Architecture Diagrams

Accessing This Resource

This spreadsheet is freely available to all government IT professionals. Compatible with Excel 2016+ and Google Sheets.