Zecurit’s IP Restriction feature enhances your organization’s security by allowing access to the platform only from approved IP addresses or IP ranges. This ensures that users can log in and interact with the system only from trusted network environments.
Note: Only the Super Admin can configure IP restriction settings. The rule applies to all users, including the Super Admin.
What IP Restriction Do
When IP Restrictions are enabled:
- Access is only allowed from the configured IP addresses or IP ranges.
- Any login attempt from outside the allowlist will be blocked automatically.
- This restriction applies across the platform, including the web portal and APIs.
Supported Input Formats
Zecurit allows you to restrict access by choosing one of the following input types:
| Type | Description | Example |
|---|---|---|
| IP Address | Add individual IPs manually. Use the ➕ Add button to add more IPs. | 192.168.1.10 |
| IP Range | Add IP ranges to allow access from a range of addresses. Use the ➕ Add button to add more ranges. | 192.168.1.10 - 192.168.1.100 |
How to Configure
- Login as Super Admin
- Navigate to Settings → Security → IP Restrictions
- Add Allowed IPs
- Enter one or more IP addresses or IP ranges in the provided field.
- Save and Confirm
- Save the settings. The system will immediately apply the restrictions.
- Test Access
- Try logging in from a different device or location within the allowlist to confirm access.
Important Notes
- Applies Globally: This restriction affects all users including Admins and Super Admins.
- No Bypass: If no valid IP is listed or the logged-in user is outside the defined range, access will be denied.
- Emergency Access: Maintain at least one backup IP (like VPN) in case your primary IP changes.
Best Practices
- Review and update your IP allowlist regularly, especially when:
- Office IPs change
- New locations are added
- Users work remotely via VPN
- Combine with 2FA for enhanced login security.
- Inform users about allowed network locations to avoid login confusion.