Newer Version Available
Network-Based Security
User authentication determines who can log in, while network-based security limits from where users can log in and access, and when. Use network-based security to limit the window of opportunity for an attacker by restricting the origin of user access requests. Network-based security can also make it more difficult for an attacker to use stolen credentials.
To enhance network-based security, you can restrict the hours during which users can log in. You can also restrict the range of IP addresses from which users can log in and access Salesforce. If IP address restrictions are defined for a user’s profile and a login originates from an unknown IP address, Salesforce does not allow the login. These restrictions help protect your data from unauthorized access and phishing attacks.
To set the organization-wide list of trusted IP addresses from which users can always log in without a login challenge, see Set Trusted IP Ranges for Your Organization. To restrict login hours by profile, or to restrict login and access requests by IP addresses for specific profiles, see Setting Login Restrictions.