DEV Community

Cover image for Restrict Access to AWS Quicksight based on source ip
nainarmalik
nainarmalik

Posted on

Restrict Access to AWS Quicksight based on source ip

Amazon QuickSight is a fast, cloud-native business intelligence service that makes it easy to create and share interactive dashboards. It offers machine learning insights to all users, connects to many data sources, and has a cost-effective pay-per-session pricing model. QuickSight simplifies data analysis, helping businesses make informed decisions quickly.

We noticed that the quicksight can be accessed from any device which was surprising to us in the beginning. Here are the steps we followed to restrict the access based on ip of the client.

To enable IP-based restrictions for the users who has access to QuickSight admin console takes the following steps:

On the QuickSight console, on the user name menu, choose Manage QuickSight.

Image description

In the navigation pane, choose Security & permissions.

Image description

Under IP restrictions, choose Manage.

Image description

For IP address, enter the IP address which is to be allowed access in CIDR format.

Choose Add.

Image description

To edit an existing rule, choose the pencil icon next to the rule.

Image description

To delete an existing rule, choose the trash icon next to the rule.

Image description

Make sure to add your own IP address to the list to prevent being locked out yourself.

After you add, edit or delete IP address rules, choose Save changes.

Image description

Turn on the rules to start your IP-based restriction.

Image description

When the IP restriction is turned on and the list of allowed IP addresses in CIDR format is in place, any authorised user trying to access QuickSight when not logged in to the organizations VPN (regardless of their role of admin, author, or reader) is presented with an error page.

Image description

Top comments (0)