Have a question about this requirement?

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Requirement

Capability to specify access restrictions based on specific IP addresses

Functional Area

General

Industries
All
DETAILS

Description

This functionality is used to provide an enhanced level of security for SaaS products but only allowing access from a specific address. This works for organizations where all the users are in one location.

Example Use Case

Scenario: A financial services business is using CPM software to track, analyze and report its financial data. However, they want to prevent unauthorized access to the system from unspecified locations and keep their data secure.

Solution: The corporate uses the IP-based access control feature of the CPM software. It specifies the IP addresses of their headquarters and regional offices. The software then restricts access only for these specified IP addresses, prohibiting access from any other location, thus ensuring data security.

Considerations

This isn't the most secure method out there, as IP addresses can be spoofed. Also consider any employees that are outside your network. Is someone working from home today? If so, they're locked out. What if IT changes the IP addresses on your network? If they do, you may be locked out completely.

Questions to Ask a Vendor

  • IP Blocking: Is it possible to block requests to our instance of the application for anyone not within our domain?
  • IP Changes: Is it possible to accidentally lock ourselves out? If so, how would that be fixed?