You are here:
Login IP Allowlist
Prevent users from unauthorized IP addresses from accessing your Marketing Cloud Engagement accounts.
When you enable the Login IP Allowlist, you specify the IP address ranges that belong to your network. If someone attempts to log in from an IP address that isn't on the allowlist, Marketing Cloud Engagement logs the access attempt and can deny the login altogether. The login IP allowlist is turned off by default.
When the login IP allowlist is turned on, it applies to logins on the Marketing Cloud Engagement web interface and through the API. You can configure separate IP ranges for UI and API access, and you can define those ranges at the business unit or Enterprise level. For ranges defined at the Enterprise level, each business unit inherits the parent settings.
The Access Log contains a list of IP addresses and login names that logged into or attempted to log into your network.
- Enable the Login IP Allowlist
Turn on the IP Allowlisting feature for your Marketing Cloud Engagement account. When you enable this feature, you can add IP addresses to the allowlist for your account. This setting is disabled by default, but an admin can enable it. - Add IP Addresses to the Allowlist
Add IP addresses and ranges to the login IP allowlist for Marketing Cloud Engagement. - Edit an IP Range
Change an IP address or range for the IP allowlist. - Define IP Allowlist Source for Enterprise 2.0 Accounts
Choose how the IP allowlist applies to business units in Enterprise 2.0 accounts. You can choose to let each business unit specify the IP ranges for the allowlist separately, or you can configure all business units to inherit the settings from the parent account. - View the Access Log
See a list of attempts to log in to your Marketing Cloud Engagement account from IP ranges that are outside the ones specified by your IP allowlist.
