Restricting Login Access by Country Using Smart DLP
Restrict FileCloud login access based on the user's geographic location using Smart DLP rules.
Original Question or Issue:
A customer wants to restrict FileCloud login access based on the user's country.
Environment:
- Product - FileCloud Server
- Version -
- Platform - Windows, Linux, MacOS
Steps to Reproduce:
Error or Log Message:
Defect or Enhancement Number:
Cause:
Resolution or Workaround:
Use a Smart DLP LOGIN rule.
Scenario 1 – Restrict Admin Portal Only
Create a LOGIN rule with:
(_request.isAdminLogin && _request.remoteCountryCode != 'SA')
Configuration:
Affected User Action: LOGIN
DLP Action: DENY
Mode: PERMISSIVE (recommended for testing)
After verifying the rule in the Violation Report, change the mode to ENFORCE.
To use this expression, please ensure that "show recent access locations in dashboard" is set to True under Settings > Admin, as shown in the screenshot below.
- This restricts Admin Portal logins from outside Saudi Arabia while allowing normal user logins.
Scenario 2 – Restrict All User Logins
Create a LOGIN rule with:
(_request.remoteCountryCode != 'SA')
Configuration:
Affected User Action: LOGIN
DLP Action: DENY
Mode: PERMISSIVE (recommended for testing)
After validating the results, switch the rule to ENFORCE.
To use this expression, please ensure that "show recent access locations in dashboard" is set to True under Settings > Admin, as shown in the screenshot below.
- This restricts all FileCloud logins to users connecting from Saudi Arabia.
Notes:
For reference: Example Rules | FileCloud Help