Newer Version Available

This content describes an older version of this product. View Latest

Restrict Access to Trusted IP Ranges for a Connected App

After you create a connected app, you can specify the trusted IP ranges from which a user can log in. In addition, you can apply IP relaxation to all OAuth client apps, including apps that use OAuth and SAML for single sign-on.
Available in: both Salesforce Classic (not available in all orgs) and Lightning Experience
Connected Apps can be created in: Group, Professional, Enterprise, Performance, Unlimited, and Developer Editions

Connected Apps can be installed in: All Editions


User Permissions Needed
To read, create, update, or delete connected apps: Customize Application AND either

Modify All Data OR Manage Connected Apps

To update all fields except Profiles, Permission Sets, and Service Provider SAML Attributes: Customize Application AND either

Modify All Data OR Manage Connected Apps

To update Profiles, Permission Sets, and Service Provider SAML Attributes: Customize Application AND Modify All Data AND Manage Profiles and Permission Sets
To install and uninstall connected apps: Customize Application AND either

Modify All Data OR Manage Connected Apps

To install and uninstall packaged connected apps: Customize Application AND either

Modify All Data OR Manage Connected Apps

AND Download AppExchange Packages

For more information about IP Relaxation, see Manage OAuth Access Policies for a Connected App.

  1. From Setup, enter Apps in the Quick Find box, then select App Manager.
  2. Locate the connected app, click Action dropdown, and then select View.
  3. In the Trusted IP Range for OAuth Web server flow section, click New.
  4. For the start IP address, enter a valid IP address. For the end IP address, enter the same or higher IP address.
    Enter multiple, discontinuous ranges by clicking New.