Carbon Black Cloud: Can the Authorized IP Addresses Field be Left Blank When Setting Up API Key Configuration?
book
Article ID: 287086
calendar_today
Updated On:
Products
Carbon Black Cloud Endpoint Standard (formerly Cb Defense)
Carbon Black Cloud Enterprise EDR (formerly Cb Threathunter)
Issue/Introduction
When creating API Keys for any applications in the Carbon Black Cloud console, is the 'Authorized IP Addresses' field required to be filled?
Environment
- Carbon Black Cloud Console: All Versions
Resolution
- The Authorized IP may be left blank, if it is blank, then any IP Address will be able to connect using the API Key / Connector ID.
- The Authorized IP Address field should only be defined for specific IP addresses accessing the API Key/Connector ID.
- If IP Addresses are added to Authorized IP field, then logs will only be sent to the defined IP addresses.
Additional Information
- To see which IP addresses are accessing the API Key, try searching the Audit log using the appropriate keys.
- The Authorized IP Addresses field will require Public IP addresses opposed to Private IP addresses.
Feedback
thumb_up
Yes
thumb_down
No