IP restrictions for Admin Users

[Enterprise plan] How to restrict Admins from accessing the application outside the corporate network?

P
Written by Pradyumna Dinni
Updated over a week ago

Key functionalities:

  • A feature that disables admins from viewing or accessing Fyle outside the corporate network

  • Admins will be able to make requests only from a certain whitelisted IP range for that company

  • It helps maintain transparency and security by making the public data of the employees inaccessible to the admin outside the corporate network.

Use cases

  • Useful in restricting the admins from exercising their privileges outside the organization. This is done by disabling access to Fyle outside the corporate network.

  • It helps maintain security and transparency in the organization regarding employee data.

How to enable it?

  • The admin can enable IP restriction by clicking on Settings > Account > Security

  • Click on Add IP Address. A pop up will appear where you have to fill two fields:

IP Restrictions for admin users

Note:

  • IP Address - The 32-bit Internet Address used to identify the network to which you want to restrict the admin access. Eg:- 192.168.2.2

  • Subnet - A subnet mask is a number that defines a range of IP addresses available within a network.

(Kindly contact your organization’s Network Administrator to help you fill the above fields.)

Similarly, add all the IP addresses to which you want to restrict Admin access. Be cautious when you add the IP addresses - The admin access will strictly be restricted to only the whitelisted network ranges and they will not be able to use the application from any other network.

Note: IP restriction feature is only for Admins. Fylers will still be able to use the application from outside the restricted networks

How does it work?

Once the feature is enabled for a particular organization from the settings page, it’ll automatically restrict all the users with Admin role from accessing Fyle outside the whitelisted corporate networks set by the network administrator.

Did this answer your question?