IP Restrictions

Note: This feature is available for privileged administrators only.

PAM360 allows the privileged administrators to limit inbound connections to PAM360 server by enforcing IP-based restrictions to minimize unwanted traffic. It provides an added layer of security by letting the administrator to choose exactly which systems should be allowed to or blocked from accessing and sending requests to the PAM360 server. Allowing or restricting access can be done for an individual IP as well as a range of IP address(es).

PAM360 offers three types of IP restrictions:

  1. Web Access
  2. API Access
  3. Agent Access

1. Web Access

You can enable IP based restrictions for access to PAM360 web server. The IP restrictions can be set at various levels and combinations, such as defined IP ranges or individual IP addresses. 

To configure IP based restrictions, follow the below steps:

  1. Navigate to Admin >> Configuration and select IP Restrictions.
  2. Under Web Access, you have two options to choose from:
    • Allowed IP Address(es): If this option is selected, only the IP addresses specified in this field will be allowed access and the rest of the IP addresses will be blocked from accessing the PAM360 web server.
    • Blocked IP Address(es): This option can be used to block a specific IP address or an IP range and allow access to all other IP addresses.
  3. Note: The IP addresses must be entered in the text field as comma-separated values. E.g.: 10.0.2.1 - 10.0.2.15, 10.0.3.176, 10.0.3.222. There is no limit to the number of IP addresses that can be defined in both the fields.

2. API Access

PAM360 allows you to enable IP based restrictions for API calls as well as communication from native mobile apps and browser extensions to PAM360 server. The IP restrictions can be set at various levels and combinations, such as defined IP ranges or individual IP addresses.

To configure IP based restrictions, follow the below steps:

  1. Navigate to Admin >> Configuration and select IP Restrictions.
  2. Under API Access, you have two options to choose from:
    • Allowed IP Address(es): If this option is selected, only the IP addresses specified in this field will be allowed API access and the rest of the IP addresses will be blocked from sending and/or receiving API calls.
    • Blocked IP Address(es): This option can be used to block a specific IP address or an IP range and allow access to all other IP addresses.
  3. Note: The IP addresses must be entered in the text field as comma-separated values. E.g.: 10.0.2.1 - 10.0.2.15, 10.0.3.176, 10.0.3.222. There is no limit to the number of IP addresses that can be defined in both the fields.

3. Agent Access

PAM360 allows you to regulate agent communication from target machines to PAM360 server with IP based restrictions. The IP restrictions can be set at various levels and combinations, such as defined IP ranges or individual IP addresses.

To configure IP based restrictions, follow the below steps:

  1. Navigate to Admin >> Configuration and select IP Restrictions.
  2. Under Agent Access, you have two options to choose from:
    • Allowed IP Address(es): If this option is selected, only the IP addresses specified in this field will be allowed access and the rest of the IP addresses will be blocked from accessing the PAM360 web server.
    • Blocked IP Address(es): This option can be used to block a specific IP address or an IP range and allow access to all other IP addresses.
  3. Note: The IP addresses must be entered in the text field as comma-separated values. E.g.: 10.0.2.1 - 10.0.2.15, 10.0.3.176, 10.0.3.222. There is no limit to the number of IP addresses that can be defined in both the fields.

 

Top