Skip to main content

         This documentation site is for previous versions. Visit our new documentation site for current releases.      

Implementing without IP permit list

Updated on July 6, 2022

Beginning with Workforce Intelligence 8.5 and Pega Robot Runtime 19.1.63, clients can implement Workforce Intelligence without adding their external IP addresses/ranges (IP permit list). 

Note: External IP address ranges are the public-facing IP addresses that are assigned to you by your Internet Service Provider and how internet sites, like, see traffic originating from your company’s network.

Clients have remote workers and also use a complex network infrastructure (dynamic IP addresses and ranges). These network complexities make it difficult for client network teams to provide the full IP permit list for Workforce Intelligence. Pega provides other ways to secure the portal and data transmission in Workforce Intelligence.  

Securing portal access for application users

You can integrate your existing single-sign on (SSO) technology to secure the Workforce Intelligence web portal. Workforce Intelligence application users log on to the web portal using SSO, which adds a layer of security beyond an email address and password. Pega supports SSO through SAML 2.0.

Securing data transmission for data collectors

You can secure Robot Runtime routes, or the API endpoints with which Robot Runtime interacts, by enabling endpoint authorization through OAuth tokens. With this feature, the Robot Runtime endpoints are securely authorized using a client ID and client secret combination for each data collector (user with Robot Runtime installed). 

To implement Workforce Intelligence without an IP permit list, Pega needs the client’s approval. 

Before you begin:

For production go-live, the following tasks are mandatory to secure your implementation:

Approving removal of the IP permit list

  1. Log in to My Support Portal.
  2. On the My Support Portal home page, click New request > For something I need.
  3. On the Create tab, enter the request information:
    1. In the Request type field, select Other.
    2. In the Type field, select Robotics and WFI question
    3. In the Short description field, enter Approving removal of IP allow-listing restrictions.
    4. In the Primary application field, enter Workforce Intelligence.

    5. In the Deployment field, select Pega Cloud.

    6. In the Environment field, enter Other.

    7. In the Other URL field, enter the URL of your Workforce Intelligence instance (for example,

    8. In the Environment type field, select Production
  4. Click Continue.
  5. On the Details tab, in the Describe the issue field, enter Remove IP permit list from Workforce Intelligence environment.

  6. Click Continue.

  7. On the Communication preferences tab, review the contact information, and then make any necessary changes or additions.
  8. Click Finish.

Result: The Workforce Intelligence Service Delivery Team creates an internal ticket with the Pega Cloud team to remove the IP permit list.

Have a question? Get answers now.

Visit the Support Center to ask questions, engage in discussions, share ideas, and help others.

Did you find this content helpful?

Want to help us improve this content?

We'd prefer it if you saw us at our best. is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us