Configure IP Restrictions
Table of Contents
You configure IP restrictions by listing which specific IP addresses are allowed to access your Syncro site. This IP Allow List or whitelist applies to all Users and API calls, including integrations.
Note: Syncro recommends enabling the IP Allow List for both Users and APIs.
Create Your IP Allow List
- Navigate to Admin > Employees - IP Allow List:
The IP Allow List page displays.
- Click the Disabled for Users and/or APIs toggles to enable the feature(s).
- In the Allowed IP Address List field, add all the public IP addresses of users and integrations connecting via our API (for which you have made API keys) to allow them access to Syncro:
IMPORTANT:
- Add the IP addresses of all Global Admins here. If you forget, Global Admins may be temporarily logged out until they receive the email described in Unauthorized Access. When they click Approve, their IP address will be added.
- If you're on a Team Plan and are using either Azure AD Sync or Database Backup, you must add 3.227.99.15 to your allow list. (The IP addresses of Azure AD or the Database to which you are backing up do not need to be added.)
Note: IPv4, IPv6 addresses are both supported, including the use of CIDR.
- Click Save.
Unauthorized Access
If a user attempts to access Syncro after this feature is enabled and their IP address is not on the IP allow list, they will not be able to access any aspect of Syncro:
Additionally, Global Admins receive an email notifying them of the attempt. This email includes an Approve button so you can easily add the blocked IP address to the IP Allow List:
Whitelisting Integrations
Here are some commonly used vendors (and links to their IP resources) that you may want to add to your IP Allowed List: