CertCentral IP restrictions

DigiCert® CertCentral includes a feature called IP restrictions. This feature allows you to limit access to CertCentral, Guest URLs, and the CertCentral API based on specific IP addresses. With IP restrictions, you can establish rules to control access to your account and all guest URLs. You can also add rules restricting specific users, API keys, and guest URL access.

Important considerations before using the CertCentral IP restriction feature

By default, you can access CertCentral from any IP address. However, once you add your first IP restriction rule, CertCentral access changes to a "deny by default" strategy. This means that users must access CertCentral from the IP addresses specified in your rules.

Implementing IP restrictions provides several benefits, including enhanced security, increased control, and improved compliance with security best practices. However, you must maintain your IP restriction rules. This means keeping your IP restriction rules up to date as your environment evolves. It also includes addressing potential false positives if the absence of a rule inadvertently blocks legitimate access to CertCentral. Also, you may need to adjust your IP restriction rules if they become too restrictive.

Dans cette section:

CertCentral IP restrictions

Important considerations before using the CertCentral IP restriction feature

Résultats de la recherche