Skip to main content

Allowlisting IP addresses for API requests

  • Updated

Important

Only workspace Owners can edit this field.

Overview

Each API user in your workspace can allowlist specific IP addresses to allow API calls from only the provided address(es). If there aren't any allowlisted IP addresses for a user, API requests are possible from any IP address.

Security implications

Fireblocks highly recommends allowlisting IP addresses for all of your API users. This restricts the API user from being used on unknown networks and only allows it to be used with the addresses you trust. You can add and remove addresses at any time.

Allowing API requests from any IP address can impose serious security risks. Limiting those addresses mitigates the scenario where an attacker steals your API key and uses it from any machine on the internet.

Managing whitelisted IP addresses for API requests

  1. In the Fireblocks Console, go to Settings  > Users.
  2. Find the API user you want to edit, then select More Actions > Allowlist IP Addresses. Any currently assigned IP addresses appear on the Allowlist API IP Addresses dialog.
  3. Edit the IP address or addresses as needed.
  4. Select Save to confirm your changes.

Note

Only /32 IP addresses are accepted. Don't enter addresses as a range of values.

Was this article helpful?
4 out of 5 found this helpful

Related Articles