Skip to main content

What is the IP policy?

Updated

With IP access rules, you define from which networks (IP ranges) d.vinci is accessible. IP rules control the origin of access (“from where”).

You can apply IP access rules on two levels:

  • Across the entire system (internal application)
    Example: You want to prevent users from accessing d.vinci without a VPN. Therefore, you enter the corresponding IP access rules in the Basic settings under Security.
  • In the application portals (for the external view of application portals and job advertisements)
    Example: You created an “Intranet” application portal that should only be visible within the corporate network. To do this, store your company network’s IP ranges in the corresponding portal. This way, the portal remains accessible internally but is not reachable from the public internet.

Distinct from this is the question of which people are allowed to access which areas of the system. You define this independently of IP rules via user roles and permissions.

Configuration

Open the Basic Settings page and press the Security tab. After pressing the edit icon you can enter IP Policy.
After entering an IP, the field IP policy exceptions. If you select one of the following elements there, then you can access the elements from other IP ranges and only the elements not selected are still protected by the IP policy.

Elements to select: 

  • d.vinci systems (Applicant Tracking, Onboarding)
  • REST API
  • Test provider API
  • Reporting API

Example 
IP Policy: 12.234.123.2
IP Policy Exception: Reporting API
It is still possible to access the reporting interface from any IP address and thus retrieve data if the appropriate security elements such as tokens and co. are known.

Note
Please check beforehand whether users may not also need to work or retrieve applicant information while on the road or at home. The IP policy must be designed accordingly so as not to keep these users away from work. An alternative for these colleagues is to use a VPN connection.  

Behavior in the system

  • Usage
    Once IPs have been entered in the security section, access is only granted to users who log in from this IP.
  • Consequences
    If a user is no longer able to log in, he will receive the error message: Access not allowed
  • Find out personal IP
    It can help to search for your own IP on the Internet via "How is my IP" and to send it to someone in the company who can check whether this IP is entered in the security area in the basic settings and, if necessary, have this colleague enter it.
  • Double Entries
    Duplicate IPs are removed and just one entrie is saved.
  • Notes on input
    • Format of entries 
      The field "IP access rules" accepts the input of networks using the "/" notation, as well as individual IP addresses.
    • Bulk input of IP addresses 
      Bulk input of IP addresses can be added using comma-separated values without spaces.
    • Duplicate entries 
      Duplicate IPs entered will automatically be reduced to a single entry.
    • Limitations 
      IPv6 addresses (e.g., 2001:0db8:85a3:0000:0000:8a2e:0370:7334) cannot be recorded.

This is how our customers use this

Many customers have set up a VPN connection for work from the home office or on the road and then restricted the IP to the range of this connection.

Related to

Related articles