Carbon Black Cloud: Can the Authorized IP Addresses Field be Left Blank When Setting Up API Key Configuration?

Carbon Black Cloud: Can the Authorized IP Addresses Field be Left Blank When Setting Up API Key Configuration?

search cancel

Carbon Black Cloud: Can the Authorized IP Addresses Field be Left Blank When Setting Up API Key Configuration?

book

Article ID: 287086

calendar_today

Updated On:

Products

Carbon Black Cloud Endpoint Standard (formerly Cb Defense) Carbon Black Cloud Enterprise EDR (formerly Cb Threathunter)

Issue/Introduction

When creating API Keys for any applications in the Carbon Black Cloud console, is the 'Authorized IP Addresses' field required to be filled?

Environment

Carbon Black Cloud Console: All Versions

Resolution

The Authorized IP may be left blank, if it is blank, then any IP Address will be able to connect using the API Key / Connector ID.
The Authorized IP Address field should only be defined for specific IP addresses accessing the API Key/Connector ID.
If IP Addresses are added to Authorized IP field, then logs will only be sent to the defined IP addresses.

Additional Information

To see which IP addresses are accessing the API Key, try searching the Audit log using the appropriate keys.
The Authorized IP Addresses field will require Public IP addresses opposed to Private IP addresses.

Feedback

thumb_up Yes

thumb_down No