Skip to main content

Restrict Access by IP Range

By whitelisting specific IP addresses, you can restrict user access to your account and the workspaces under it, based on source IP. This helps prevent unauthorized user access from unapproved regions or systems.

Nota

This security control should be considered an additional layer in your defense-in-depth strategy. It should not be considered a primary defense.

Prerequisites

  • You know which IPs your users will be accessing Alteryx Analytics Cloud (AAC) from.

  • You have direct access to your organization’s AAC account and have been assigned the Account Admin role.

  • You have already asked your Alteryx representative to enable the feature on your behalf.

Account Configuration

  1. Log into your AAC account.

  2. Go to Settings > Restrict Access by IP Range setting and select Edit.

  3. Select the Restrict Access by IP checkbox.

  4. Within the Whitelist IPs field, enter one or more IPs and/or CIDR ranges.

  5. Select Save.

Inputs are validated before the setting is persisted.

  • Only IPv4 is accepted.

  • Only RFC4632-compliant ranges are accepted.

  • 0 or more IPs and ranges can be entered, separated by a comma.

  • A range can be a single IP.

  • Whitespace is not accepted.

Example valid inputs:

  • 198.51.2.0

  • 198.51.2.0/24,198.51.5.0/4

Once configured, if the user’s browser sessions or API calls come from a source IP that does not match the IPs and/or CIDR ranges registered, authentication will fail and access will be blocked. This change is enforced across the account, including any and all workspaces under the account.

En esta sección: