Allowlisting IP addresses restricts an API user's API calls to specific addresses you trust. Fireblocks recommends allowlisting IP addresses for all API users in your workspace. Without allowlisting, a stolen API key can be used from any machine on the internet. Only workspace Owners can allowlist IP addresses for an API user.
Allowlisting accepts only /32 CIDR notation. IP ranges are not supported.
To allowlist IP addresses for an API user:
- In the Fireblocks Console, go to Developer Center > API users.
- Find the API user, then select the more actions menu (⋮) > Allowlist IP address.
- Add or remove IP addresses, separating multiple addresses with commas.
- Select Save.