Restrict worker access to tasks to allowable IP addresses

By default, a workforce isn't restricted to specific IP addresses. You can use the UpdateWorkforce operation to require that workers use a specific range of IP addresses (CIDRs) to access tasks. If you specify one or more CIDRs, workers who attempt to access tasks using any IP address outside the specified ranges are denied and will get a HTTP 204 No Content error message on the worker portal. You can specify up to 10 CIDR values using UpdateWorkforce.

After you have restricted your workforce to one or more CIDRs, the output of UpdateWorkforce lists all allowable CIDRs. You can also use the DescribeWorkforce operation to view all allowable CIDRs for a workforce.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Find your workforce name

Update OIDC Identity Provider workforce configuration