Restricting Access to Your System via IP Addresses Follow
** This article only applies to the Law Ruler and Tabs3 version of Legal CRM**
đź”’ IP Address Verification, also known as "IP Address Whitelisting" and "IP Address Allowance" is a way to restrict or allow access to your cloud-based CRM software. An increasingly frequent requirement from customers is to restrict access based on the IP address of each user at the time of sign-in to the system. Such a restriction provides an additional layer of security on top of other security measures enforced, such as Two-Factor Authentication (2FA) and user passwords.
IP address whitelisting, IP address allowance, IP address restrictions, and inbound IP whitelisting, are where customers want to limit sign-in to the system by *only* accepting traffic from the approved IP addresses or IP ranges. If implemented correctly, this should disallow users from IP addresses that are not approved by customers from accessing the application because they should not be able to sign in.
đź’ˇ One example use case is that some customers only want their staff logging in from their office location, or from certain virtual office locations, and to lock everyone else out from signing in.
How to Activate IP Address Login Restrictions in Legal CRM
Click on Setup > Security Settings
⚠️ You must be a user with admin access to access the Setup menu and edit security settings. Please ask your firm administrator or IT department if you would like this activated for your fi
Editing the Allowed IP Addresses or Ranges that May Log In to Your System
In addition to that, your current IP address will be displayed. By default, all inbound IP addresses are allowed, which is indicated by the asterisk, "*" character in the "Allowed Source IP addresses/Wildcard IPs" box. If you would like to limit login to certain IP addresses or ranges, then add those in this box.
⚡ It is strongly recommended that if you are going to enable inbound IP address restrictions on your system that you add your IP address, as shown, and the range if you do not have a static IP that never changes. If you do not add your/your office IP and you remove the * which is all IP addresses, then you will in effect lock yourself and all your users out of the system. Use this carefully!
NOTE: You must separate multiple IP addresses/ranges with a comma.
Editing the Blocked IP Addresses or Ranges that May Not Log In to Your System
đź”’ If you would like to disallow certain IP addresses or ranges, then you may enter those in the "Disallowed Source IP addresses/Wildcard IPs" box. Adding any IP addresses or ranges in the Disallowed box will prevent them from logging into Legal CRM. By default, this box is empty since no one starts out as disallowed. Add any IP addresses here that you do not want to access the system or use a combination of Allowed and Blocked IP addresses or ranges to achieve your goals.
NOTE: You must separate multiple IP addresses/ranges with a comma.
Here is why: Outside of Legal CRM or other apps, an unauthorized party could potentially compromise a law firm computer and steal passwords. A combination of IP Address restrictions and 2FA will add peace of mind and additional security but is only as useful as how it is implemented. With that said, how your firm implements these security features is up to each firm, not Legal CRM.
Support
Support questions? Please contact Legal CRM support . We are happy to help!