Can Conditional AD access be used to restrict the access to azure portal to disallow users from a certain locations from accessing the portal?

I am a developer working for an EU region customer and am based out of India.

now - I don't want my azure portal to be accessible directly from my browser but should be able to access it from an Azure VM provisioned in the EU region.

Can this be achieved using Azure AD开发者_C百科 conditional access?

Also - If possible - what are different kind of hardening methods that can be used to ensure no data leakage is possible by copying data from this VMA to my local machine ?