Add IP whitelisting
Enterprise T2/T5/T10 accounts have an additional security level feature. Hosted~FTP~ provides IP whitelisting at the account level, group level, and individual user level.
- Note that Operational administrators cannot change account level IP whitelisting settings, only group and user level IP whitelisting settings.
- Note that any IP whitelisting restrictions at a user level override the account level settings.
Login Failures
Once IP whitelisting is enabled the user must be coming from the IP addresses specified, otherwise they will experience login failures. The account or operational admin(s) must be contacted to correct the situation.
Syntax
Enter the IP address(es) of the location where the user will log in from. If there are several locations, enter the multiple IP addresses separated by commas, space, semi-colon or colon. You can also specify “CIDR address ranges” (see link)
Examples
Multiple IP addresses: 176.32.98.166,129.42.38.104 0.113.200.201;172.217.2.174:96.43.144.26
CIDR ranges: 72.30.35.0/24
Setting overall account level IP whitelisting

- As the account administrator go to your Setup tab
- Scroll down to the Account-Level Options and locate the Apply IP whitelist for all users option
- Enable the option by checking Customize and then selecting how you want to enforce the rule: Apply to all users in the account and allow separate rules on a group/user level.
- Input the IP address(es) or CIDR range
Setting group level IP whitelisting

- As an administrator go to the Users tab > Group tab
- Click on the Group you would like to edit settings for
- Locate the Apply IP whitelist for all users in group option
- Enable the option by checking Customize and then selecting how you want to enforce the rule: All users in the group and allow separate rules on a user level.
- Input the IP address(es) or CIDR range
Setting individual user IP whitelisting

- As an administrator go to the Users tab and select the user
- Scroll down to the user’s options and locate the Apply IP whitelist for this user option
- Enable the option by checking Customize and then enforcing the rule on the user
- Input the IP address(es) or CIDR range