Boldo Logo

Organization Security

The Security section allows you to configure advanced protection measures for your organization. It includes two systems: Two-Factor Authentication (2FA) and Allowed IP Address List (IP Whitelist).

These features significantly enhance your organization’s security by adding extra layers of protection against unauthorized access.

Two-Factor Authentication (2FA)

Organization-wide two-factor authentication allows you to enforce 2FA usage for all members of your organization. When enabled, all users must configure and use two-factor authentication to access your organization.

Prerequisites for Enabling 2FA
You must first enable 2FA on your own account before enforcing it for the organization.
Organization-wide 2FA is unavailable for organizations using single sign-on (SSO). If your organization uses an SSO domain, this feature will be automatically disabled.

Enable 2FA for the Organization

  1. Go to Security: Click "Security" in the side menu
  2. Locate the 2FA section: Find the "Two-Factor Authentication" card
  3. Enable the feature: Toggle the switch to "Enabled"
  4. Confirm: Click "Confirm" to apply changes


Immediate effect: All members without active 2FA will be required to set up two-factor authentication upon their next login.

Allowed IP Address List (IP Whitelist)

The IP whitelist allows you to restrict access to your Boldo organization to specific IP addresses. This feature is particularly useful for organizations wanting to limit access to their offices, corporate VPNs, or other secure locations.


How the IP Whitelist Works

When the IP whitelist is enabled:

  • Only authorized IP addresses can access the organization
  • You can define individual IP addresses or address ranges (CIDR)

Configure the IP Whitelist

  1. Go to Security: Click "Security" in the side menu
  2. Find the IP Whitelist section: Locate the "Allowed IP List" card
  3. Open configuration: Click "Manage"
  4. Configure your rules
  5. Confirm settings: Click "Confirm"

Enabling the Whitelist

Toggle the switch to activate or deactivate the feature


Adding IP Addresses

  • IP Address: Enter the authorized IP address
  • CIDR (optional): Define an address range (e.g., /24 for a full subnet)

Your current IP address must be included in the allowed IP list. Boldo prevents you from accidentally locking yourself out of your own organization.