Information for: DEVELOPERS   PARTNERS

Controlling access with Acquia Cloud Shield

Available only to Acquia Cloud Shield subscribers on Acquia Cloud Enterprise, and is not available for Acquia Cloud Site Factory.

Acquia Cloud Shield enables you to configure IP address whitelisting for occasions when you must restrict SSH access to the web servers in your subscription.


Acquia Cloud Shield imposes a limit of 25 IP addresses or CIDR ranges.

Image of the user interface of the VPC whitelisting feature


For more information about security settings in Acquia Cloud, such as password strength, two-factor verification, or whitelisting access to the Acquia Cloud interface, see Managing security settings.

Enabling whitelisting in Acquia Cloud Shield

To limit SSH access to your infrastructure for all applications in your subscription, complete the following steps:

  1. Sign in to the Acquia Cloud interface with the Owner or Administrator role, and then select the application you want to work with.

  2. In the menu to the left, click Security.

  3. Click Acquia Cloud Shield.

  4. Click Add Rule.

  5. In the Rule Name field, enter a name less than 90 characters in length.

  6. In the IP address(es) or range section, select one of the following options:

    • Enter manually: Enter one or more addresses (such as in the text area.
    • Import a CSV file: Drag a text file containing one or more IP addresses (such as into the text area.


    You can separate several IP addresses by a space, comma, or line breaks. You can also use CIDR ranges, such as:

  7. Click Save.

The webpage will refresh and display a list of all whitelisting rules.