Guide

Manage portal access and approved networks

Choose local, organization, or combined sign-in and optionally permit limited homepage access from trusted public network ranges.

Security administrators7 min readUpdated July 17, 2026

Select a sign-in method

  • Email and password: tenant-scoped local accounts use the portal sign-in page.
  • Email/password or organization sign-in: staff may use either an active local account or the configured provider.
  • Organization sign-in only: local passwords are rejected for this tenant.

Select an access mode

  • Signed-in staff only: every visitor must complete the configured tenant sign-in flow.
  • Approved networks or signed-in staff: general homepage and news content can be visible from approved networks, while directory and personal features still require sign-in.

Add approved networks safely

  1. Obtain the organization’s public internet egress addresses from its network administrator.
  2. Enter one IPv4, IPv6, or CIDR range per line.
  3. Do not enter private ranges such as 10.0.0.0/8; the portal receives the public source address.
  4. Test from both an approved and an unapproved connection before relying on the policy.
  5. Review the list after ISP, firewall, or content-filtering changes.