Important
Only workspace Owners can edit this field.
Overview
Each API user in your workspace can allowlist specific IP addresses to allow API calls from only the provided address(es). If there aren't any allowlisted IP addresses for a user, API requests are possible from any IP address.
Security implications
Fireblocks highly recommends allowlisting IP addresses for all of your API users. This restricts the API user from being used on unknown networks and only allows it to be used with the addresses you trust. You can add and remove addresses at any time.
Allowing API requests from any IP address can impose serious security risks. Limiting those addresses mitigates the scenario where an attacker steals your API key and uses it from any machine on the internet.
Managing whitelisted IP addresses for API requests
- In the Fireblocks Console, go to Settings > Users.
- Find the API user you want to edit, then select More Actions > Allowlist IP Addresses. Any currently assigned IP addresses appear on the Allowlist API IP Addresses dialog.
- Edit the IP address or addresses as needed.
- Select Save to confirm your changes.
Note
Only /32 IP addresses are accepted. Don't enter addresses as a range of values.