Public Accessibility Allow List
Some of your network resources may be deliberately accessible from the public internet. As such, you may not want these resources to be flagged as non-compliant for Insights that calculate public access. To avoid unnecessarily flagging additional Insights and increasing your risk score, you need to update the Public Accessibility Allow List. Allow List entries are governed by Classless Inter-Domain Routing (CIDR) blocks of IP addresses (IPv4 or IPv6) or domain names that are added by Domain Admins. You can also add values in bulk using a CSV file.
Adding or managing single CIDR blocks or domains
To add a value:
- Log in to InsightCloudSec as a Domain Admin.
- Navigate to Settings > System Administration > Public Accessibility.
- Choose which value type to add:
- For adding a CIDR block, click IP Allow List.
- For adding a domain, click Domain Allow List.
- Click Add > Add Value.
- Provide a value and an optional description. For domains, you also need to provide an operator.
- Click Save.
To edit a value:
- Log in to InsightCloudSec as a Domain Admin.
- Navigate to Settings > System Administration > Public Accessibility.
- Choose which value type to edit:
- For a CIDR block, click IP Allow List.
- For a domain, click Domain Allow List.
- Click the Action menu (...) > Edit Value next to the value you want to edit.
- Adjust the values or description as necessary.
- Click Save.
To delete a value:
- Log in to InsightCloudSec as a Domain Admin.
- Navigate to Settings > System Administration > Public Accessibility.
- Choose which value type to delete:
- For a CIDR block, click IP Allow List.
- For a domain, click Domain Allow List.
- Click the Action menu (...) > Delete Value next to the value you want to delete.
- Click Delete to confirm the deletion.
Adding or managing multiple CIDR blocks or domains
To add multiple values (.csv
file upload):
Required CSV formatting
If you are adding CIDR blocks, your comma-separated values need the following format: <CIDR block>,<notes>
. For example, 10.10.1.0/24,my first subnet
. If you are adding domains, your comma-separated values need the following format: <domain>,<operation>,<notes>
. For example, my-domain,startswith,all of my-domain
.
- Log in to InsightCloudSec as a Domain Admin.
- Navigate to Settings > System Administration > Public Accessibility.
- Choose which value type to add:
- For adding multiple CIDR blocks, click IP Allow List.
- For adding multiple domains, click Domain Allow List.
- Click Add > Import CSV.
- Click Choose File. A local file browser opens.
- Select a local
.csv
file and then click Open. - Click Import.
To delete multiple values:
- Log in to InsightCloudSec as a Domain Admin.
- Navigate to Settings > System Administration > Public Accessibility.
- Choose which value type to delete:
- For a CIDR block, click IP Allow List.
- For a domain, click Domain Allow List.
- Select the checkbox next to the values you want to delete.
- Click Delete to confirm the deletion.