Rest api access policy IP Filter

Dheeraj Pology
Tera Contributor

‎04-12-2024 06:46 PM

I have disabled authentication for Scripted REST API and I want to restrict its access to specific IP or Range. I tried IP Filter criteria in API Access Policy but it's not working. How to properly configure the IP Filter?

0 Helpfuls
  • 781 Views
3 REPLIES 3

Ravi Chandra_K
Kilo Patron
Kilo Patron

‎04-12-2024 08:38 PM

Hello @Dheeraj Pology 

Have you tried Adaptive Authentication?

 

Please refer:

https://docs.servicenow.com/bundle/washingtondc-platform-security/page/administer/login/task/t_Acces...

https://docs.servicenow.com/bundle/washingtondc-platform-security/page/integrate/authentication/conc...

 

Please mark the answer as helpful and correct if helped.

 

Kind Regards,

Ravi Chandra 

0 Helpfuls

Dheeraj Pology
Tera Contributor
In response to Ravi Chandra_K

‎04-12-2024 09:00 PM

Hi @Ravi Chandra_K 

I see IP Address Access Control is used for Instance traffic. Not for any specific API Resource.

0 Helpfuls

Randheer Singh
ServiceNow Employee
ServiceNow Employee

‎04-12-2024 08:42 PM

Hi @Dheeraj Pology 
API access policy does not work for public APIs. If you have selected "requires authentication" as false for the scripted REST API, the REST API access policy will not work for the API.

 

Thanks,

Randheer