Enterprise and Guardian customers can now restrict access to LaunchDarkly to specific IP addresses and CIDR ranges. The allowlist can be configured independently for browser sessions, API access, or both — giving security teams fine-grained control over how and where LaunchDarkly is reachable.

For organizations in finance, healthcare, and other regulated industries, this is a common compliance requirement: SaaS tools should only be accessible from corporate networks. IP allowlisting provides a defense-in-depth layer on top of existing identity and SSO controls.

Configuration is available in your account security settings and is fully supported via the Terraform provider (v2.29.0+). The feature is also available in LaunchDarkly's federal production environment.

Read the docs → (https://launchdarkly.com/docs/home/account/ip-allowlist)