Skip to main content
  1. Addigy
  2. Account Settings
  3. Account Settings

Configuring an IP Allowlist for the Addigy Portal

Created:

The IP Allow List restricts access to your Addigy portal so that users can only sign in from IP addresses you specify. Access to your organization will only be allowed from the addresses you provide, and any login attempt from an address that isn't on the list gets blocked. This is useful for limiting portal access to your corporate network, a VPN, or other trusted locations.

You'll find the IP Allow List under Account > Settings.

Permission Requirements

Only the following users can view or change the IP Allow List:

  • Users with the Owner role.
  • Users with a custom role that has the Edit Account Settings permission.

If you don't have one of these roles, you won't be able to make changes, so reach out to someone in your organization who does.

Before you begin: Avoiding a Lockout

Because the allow list blocks every address that isn't explicitly listed, a mistake here can lock you out of the portal, and possibly everyone else in your organization along with you. With that, there are a few things to account for:

  • IPv6. If your connection supports IPv6, the portal looks at your IPv6 address when you sign in, not your IPv4 address. So if you add only your IPv4 address but your device connects over IPv6, you'll be locked out. Add both your IPv4 and IPv6 addresses, along with the addresses of any other admins who need access, so that every connection path is covered.
  • You can use CIDR ranges. The field accepts individual IPv4 and IPv6 addresses as well as CIDR ranges. Allowing a whole subnet, such as your office network range, instead of a single address can save you from a lockout if someone's specific IP address changes.
  • Tip: Before saving, confirm the exact public IP addresses your team uses, including IPv6 where it applies. The easiest way is to look up your current public IP from each network you sign in from. If you're not sure whether IPv6 is in play, add it anyway. An extra valid entry does no harm, but a missing one can lock you out.

How to Enable the IP Allow List

  1. Sign in to the Addigy portal with an account that has the Owner role or the Edit Account Settings permission.
  2. Go to Account > Settings.

  3. Find the IP Allow List section.

    [Insert screenshot of the IP Allow List section here.]

  4. In the input field, enter the IP addresses that should be allowed to access the portal as a comma-separated list (for example: 12.14.100.146, 31.220.2.133). The field accepts IPv4 addresses, IPv6 addresses, and CIDR ranges. Be sure to include:
    • Your own current IPv4 address.
    • Your own current IPv6 address, if your connection supports IPv6.
    • The IPv4 and IPv6 addresses (or CIDR ranges) of any other administrator or location that needs access.
  5. Double-check your entries. Make sure every address that needs access, including your own, is present and typed correctly. Pay close attention to IPv6 addresses, as noted above.
  6. Click Save.

Once you save, the allow list takes effect and access is restricted to the listed addresses. Confirm that you can still reach the portal, and check with at least one other authorized user that they can sign in as well.

How to Disable the IP Allow List

To turn off IP-based restrictions, clear out the configured addresses:

  1. Go to Account > Settings.
  2. Find the IP Allow List section.
  3. Remove all of the IP addresses from the field so that it's empty.
  4. Click Save.

With no addresses configured, the allow list is no longer enforced, and the portal is reachable from any IP address again.

Recovering from a Lockout

A single administrator is locked out

If you lose access because your own address is no longer on the list (for example, your IP changed or you connected from a new network), ask another user who still has the Owner role or the Edit Account Settings permission to update the allow list for you. They can add your current address, including your IPv6 address if it applies, under Account > Settings.

A total lockout: no one can sign in

If the allow list was misconfigured so that no one in your organization can sign in, the settings can't be fixed from within the portal. In that case:

  • Contact Addigy Support and let them know that an IP Allow List misconfiguration has locked all users out of the portal.
  • If support needs to make changes on your behalf, an Owner of the instance should reach out directly and confirm whether Addigy has permission to enable support access to the account.

From there, Addigy Support can work with you to restore access.

Was this article helpful?
1 out of 1 found this helpful
Return to top

Didn’t find what you’re looking for?

Contact our Support Team