What's new: Use IP-based access to prevent users from signing in from random public IP addresses

Report · Sep 25, 2025

We’re introducing IP-based access control to give enterprise admins greater control over users’ access to Adobe products and services. With this feature, you can restrict sign-ins and app usage to trusted public IP addresses, helping prevent unauthorized access from unapproved networks.

Why use IP-based access?

Enhanced security: Limit Adobe product access only to trusted public IP addresses.
Prevent unauthorized sign-ins: Block users from logging in or switching profiles from unapproved networks.
Centralized control: Apply IP-based restrictions across all directories and products in your Adobe Admin Console.
(Note: These restrictions apply to all ID types — Adobe ID, Enterprise ID, and Federated ID.)

How it works

Admins can add to the IP allowlist to define which public IPv4 addresses or subnets are permitted. Any attempts to sign in or use Adobe apps outside of these approved ranges will be restricted.

Supports multiple IPv4 addresses and ranges (CIDR format).
Add multiple IP ranges (up to 2000 characters).
IP-based access enforced within minutes after setup.

Protect your sensitive data: If your organization handles sensitive data or high-value assets, ensuring secure access while staying compliant with corporate policies and regulations is critical. IP-based access helps you control who can sign in to Adobe products—and from where.

How IP-based access helps you:

Keep remote logins safe: Imagine a bank team accessing client-sensitive design files. With IP-based access, only employees on the corporate VPN can log in, keeping data secure from personal or untrusted networks.
Guard your creative and marketing assets: Marketing and creative teams store campaigns and insights in Adobe tools. Only approved office or partner IPs can access these assets, reducing risk of leaks or accidental sharing.
Compliance & audit readiness: Enterprises in finance, healthcare, or government can enforce network-level restrictions, making audits and security reviews simpler and more transparent.
Simplify identity management: Works across Federated, Enterprise, and Adobe IDs. Admins can centrally control access for employees, contractors, and partners without managing individual accounts.
Prevent unauthorized sign-ins: Contractors or distributed teams trying to log in from unapproved networks are automatically blocked, reducing account misuse and takeover risks.

How to enable

Go to Admin Console > Settings > Privacy and Security > Authentication Settings > IP-based access.
Here, you can add, edit, or remove IP addresses anytime.

For a step-by-step guide, visit our documentation: Limit product access by IP addresses

Please note: When IP-based access is enabled, users can continue working normally. They will only be restricted if they try to sign in or switch to a profile from a public IP address that isn’t on the allowed list.

Have feedback or encountering issues? Let us know by posting in the thread below—we’d love to hear from you!

Quick Links

Picture 1.png

If this was helpful, please click the Upvote icon in the top left corner of this post. Your feedback helps us improve the experience. Thank you!

Stay Informed! Explore All the Latest Updates & Releases on Our ICYMI Page!

Have questions? Click 'Reply' below to ask.