IP "allow" lists are lists of trusted IP addresses or IP ranges from which account users can access your domains. You can apply an IP allow list to an individual user, team, or API key, or you can define a global IP allow list to apply to all users in your NS1 account.
Note
In order to manage individual or global IP allow lists, you must have the "Manage IP allow list" permission option (in the "Account Admin" section) enabled on your individual account. If you do not have this permission enabled, contact your account administrator for assistance.
Follow the instructions below to create a global IP allow list. By default, this list will be applied to all users and teams associated with your account.
-
In the NS1 portal, click your username on the upper right corner of the screen to reveal a drop-down menu. Navigate to Account Settings > Security Settings.
-
From the Account Security Settings page, click the Global IP allow lists tab.
-
Click Add allow list.
-
Enter a name for the allow list for reference, and then add the IPv4 address or define a CIDR range for the addresses you want to include. Press tab or enter/return to add multiple addresses or CIDR ranges.
-
Click Save Changes. A dialogue box appears requesting to add your current IP address to the list if it is not already included. IP allow lists are applied globally for all users and API keys. If the source IP you are using to access this portal is not allowed in the existing records, NS1 will automatically add it to the allow list on your user account. Click OK to accept.
To apply an IP allow list to an individual user or API key, you must edit the permissions for that specific user or API key.
-
Click your username in the upper right corner of the portal and navigate to Account Settings > Users & Teams.
-
Click the Users or API keys tab, and then click the pencil icon to edit the desired user or key.
-
Scroll to the bottom of the Manage User or Manage API key modal. Under "Manage IP allow list" enter one or more IPv4 addresses or CIDR ranges to apply specifically to this user or API key.
-
Optionally, enable the "Apply this IP allow list exclusively" to ignore any other allow lists applied at the global or team level and only use the addresses and/or ranges specified here.
-
Click Save Changes.