< All Topics

Add IP Whitelisting

What is IP Whitelisting?

IP Whitelisting is an additional security feature that blocks all IP addresses from connecting to your server or applications if they are not whitelisted. Some scenarios can include specific users requiring access to the user only from allowed locations such as banks or financial firms. So even if an individual has the credentials, they still need to connect from a validated location. With HostedFTP, you can add IP whitelisting along with SSH keys, SSO, and MFA.

Enterprise T2/T5/T10 accounts have an additional security level feature. Hosted~FTP~ provides IP whitelisting at the account level, group level, and individual user level.

  • Note that Operational administrators cannot change account level IP whitelisting settings, only group and user level IP whitelisting settings.
  • Note that any IP whitelisting restrictions at a user level override the account level settings.

Login Failures

Once IP whitelisting is enabled the user must be coming from the IP addresses specified, otherwise they will experience login failures. The account or operational admin(s) must be contacted to correct the situation. This can be tracked from generating recent login reports for the user attempting to login. You’ll see a description that the IP was blocked.

Syntax

Enter the IP address(es) of the location where the user will log in from. If there are several locations, enter the multiple IP addresses separated by commas, space, semi-colon or colon. You can also specify “CIDR address ranges” (see link)

Examples

Multiple IP addresses: 176.32.98.166,129.42.38.104 0.113.200.201;172.217.2.174:96.43.144.26

CIDR ranges: 72.30.35.0/24

Setting Overall Account level IP Whitelisting

  1. As the account administrator go to your Setup tab
  2. Scroll down to the Account-Level Options and locate the Apply IP whitelist for all users option
  3. Enable the option by checking Customize and then selecting how you want to enforce the rule: Apply to all users in the account and allow separate rules on a group/user level.
  4. Input the IP address(es) or CIDR range

 

Setting Group Level IP Whitelisting

  1. As an administrator go to the Users tab > Group tab
  2. Click on the Group you would like to edit settings for
  3. Locate the Apply IP whitelist for all users in group option
  4. Enable the option by checking Customize and then selecting how you want to enforce the rule: All users in the group and allow separate rules on a user level.
  5. Input the IP address(es) or CIDR range

 

Setting Individual User IP Whitelisting

  1. As an administrator go to the Users tab and select the user
  2. Scroll down to the user’s options and locate the Apply IP whitelist for this user option
  3. Enable the option by checking Customize and then enforcing the rule on the user
  4. Input the IP address(es) or CIDR range
Table of Contents