You can restrict access to Zendesk Support to users within an specific range of IP addresses, if you have an Enterprise account. This means that users from these IP addresses are the only users allowed to sign in to Support. You can also allow customers (but not agents and administrators) to bypass IP restrictions.
You can specify ranges of IP addresses, separating each range with a space. Two methods are available to specify a range. The first is to use asterisk (*) wildcards. An IP address consists of four numbers separated by periods, such as 192.168.0.1. You can substitute a single asterisk character (*) for any number group to let Zendesk know that it should accept any value in that space. For example, 192.*.*.* allows any IP address whose first number is 192.
The second way to specify an IP range is to use IP subnet mask syntax. For example, 192.168.1.0/25 specifies all the IP addresses between 192.168.1.0 and 192.168.1.127.
- Click the Admin icon () in the sidebar, then select Settings > Security.
- Select the Global tab.
- In the IP Restrictions section, select Enabled, then enter the Allowed IP Ranges you want to restrict.
Note: Enabling IP based access restrictions can break third party integrations. Be sure to include all external IPs that need access to your account via the Zendesk API.
- (Optional) Select the Customer can bypass restrictions check box.
This option ensures that you customers can access Support regardless of what their IP address is, even if their IP address is not in the range of allowed IP addresses.
Agents and administrators cannot bypass IP address restrictions.
- Click Save.