IP allowlist
Use the IP allowlist to control who has access to your Cortex workspace. This feature allows you to limit workspace access by configuring specific IP addresses that are allowed.
By default, all IP addresses are permitted access unless otherwise specified.
Configure an IP allowlist
You can configure an IP allowlist in the Cortex UI or via the Cortex API. Your user or your API key must have the Configure IP allowlist
permission to perform these steps.
- Cortex UI
- Cortex API
To create an allowlist in the Cortex UI:
- Navigate to the IP allowlist settings page.
- In the upper right, click Add IP addresses.
- In the modal that appears, configure the IP address.
- In the Simple form, enter a single IP address and optional description.
- In the Advanced form, you can paste in a list of IPs and optionally include descriptions.
- Click Save.
After you save the setting, Cortex will check whether your IP address is included in the allowlist to prevent you from losing access to your workspace. If your IP is not included in the list, you will see a warning message.
See the Cortex API documentation to learn more about creating an allowlist through the API. You can retrieve a range of addresses, update existing addresses, and validate your IP addresses. Cortex will check whether your IP address is included in the allowlist to prevent you from losing access to your workspace.
Troubleshooting and FAQ
Why do I see a 403 Forbidden IP address
error while running a Workflow?
If a step in your Workflow hits the Cortex API, it will return an error if you hit an IP that is not included in your allowlist. Please reach out to the Cortex Customer Engineering team if you need further assistance.