IP restriction & access policies for secure operations

Reduce unauthorized access by limiting logins to approved IPs or ranges. Ideal for firms that want office-only access with flexible exceptions.

Request setup Security overview
Key capabilities
  • Allowlist specific IPs
  • Support IP ranges (CIDR)
  • Whitelist office networks
  • Exclude selected employees/admins
  • Access logs for traceability

Common setups

  • Office-only: allow only office static IPs
  • Multi-branch: allow multiple office networks
  • Partner access: whitelist partner IPs
  • Hybrid: office-only with selected remote employee exemptions

Recommended governance

  • Keep an emergency admin account exempted for continuity
  • Review IP lists when offices change ISP
  • Enable logs for failed login and blocked access attempts

How IP restriction works in Zeyora

A simple policy layer that fits real company operations.

1) Set allowed IPs / ranges
Add office static IPs and CIDR ranges for branches (example: 203.0.113.0/24).
2) Choose exceptions
Exclude selected admins/employees to allow secure remote access when required.
3) Monitor access
Keep logs for blocked attempts and policy changes for accountability.

Best practices

  • Keep at least one emergency admin account exempted for continuity.
  • Review IP lists when your ISP changes or branches move.
  • Use RBAC along with IP restriction (least privilege).
  • For audit firms: apply stricter IP policies on client-portal administration roles.