- Getting started
- Data security and compliance
- Organizations
- Authentication and security
- Licensing
- About licensing
- Unified Pricing: Licensing plan framework
- Flex: Licensing plan framework
- Activating your Enterprise license
- Upgrading and downgrading licenses
- Assigning licenses to tenants
- Assigning user licenses
- Deallocating user licenses
- Monitoring license allocation
- License overallocation
- Licensing notifications
- User license management
- Tenants and services
- Accounts and roles
- AI Trust Layer
- External applications
- Notifications
- Logging
- Troubleshooting
- Migrating to Automation Cloud

Automation Cloud admin guide
Configuring the firewall
This page lists the domains used by Automation CloudTM and our other cloud services. You can use this information to compile an allow list for UiPath® software in the configuration of your company's perimeter network.
In the event that your company restricts access to only allowed websites, you must allow accessing the necessary domains based on the UiPath products you use and the scenarios per product that you use. If you do not allow access to the required domains, Automation CloudTM may not function as intended.
The following table lists the domains used by Automation Cloud Portal:
Scenario |
Domains to Allow |
---|---|
Sign in with basic authentication |
|
Sign in with Microsoft |
|
Sign in with Google |
|
Sign in with LinkedIn |
|
Sign in with Azure Active Directory (Azure AD) |
|
Sign in with UiPath Assistant (basic email) |
For events related to signing in with basic authentication:
|
Sign in with UiPath Studio (basic email) |
For events related to signing in with basic authentication:
|
Sign in for the first time / Reset password |
|
Issuing the certificate for the site |
|
Static assets: Fonts, Styling and CDN hosted scripts |
Fonts:
Images:
CSS:
Scripts:
|
Dynamic Feature Enablement |
|
Sign in via Auth0 (for EU) |
|
Update services |
To configure network connections, use Microsoft documentation. |
For details, refer to the Enabling the firewall for the customer-managed key documentation.
-
20.213.69.140/30
-
20.92.42.116/30
-
20.220.159.8/30
-
20.104.134.160/30
-
20.239.121.152/30
-
20.232.224.12/30
-
20.78.114.120/30
-
104.215.9.124/30
-
20.166.153.132/30
-
20.198.150.140/30
-
20.23.210.168/30
-
20.66.65.144/30
-
20.219.182.96/30
-
52.140.57.140/30
-
20.90.169.148/30
-
51.142.146.56/30
The following table lists the domains used by Action Center:
Scenario |
Domains to Allow |
---|---|
Authentication |
|
Navigate to Action Center page |
|
View/Assign/Un-assign/Delete an Action |
|
Storage bucket (File upload/download) |
|
The following table lists the domains used by AI Center:
Module or Scenario |
Domains to Allow |
---|---|
AI Center | |
Identity Server |
|
PkgManager |
|
Deployer |
|
Helper |
|
Trainer |
|
AppManager |
|
Upload files |
|
Third-party Services | |
AppInsights |
|
Static Assets |
|
Navigate to AI Center | |
Permissions |
|
OpenId configuration |
|
The following table lists the endpoint values and server locations used by AI Computer Vision:
Endpoint Value |
Server Location |
---|---|
|
Nearest geolocation based on the request IP |
|
West Europe |
|
US |
|
Delayed enterprise ring deployment, located in the United States |
The following table lists the domains used by Apps:
Scenario |
Domains to Allow |
---|---|
Navigate to Apps |
|
Create apps, or create apps via import, or add or delete process |
|
Export, clone, share, delete, edit, or publish an app |
|
Run or preview an app |
|
Select on Processes or Create rule |
|
Bind process |
|
General or Permission |
|
Create or delete a page, or create or delete History |
|
Connect to Apps |
|
The following table lists the domains used by Automation Hub:
Scenario | Domains to Allow |
---|---|
Navigate to the Automation Hub page |
|
Use OpenAPI for Automation Hub |
|
The following table lists the domains used by Automation Ops:
Scenario |
Domains to Allow |
---|---|
Navigate to the Automation Ops page |
|
The following table lists the domains used by Communications Mining:
Scenario |
Domains to Allow |
---|---|
Admin Portal / Identity Server |
|
Static assets |
|
Azure SignalR |
|
Telemetry |
|
LaunchDarkly Feature Flags |
|
Pendo (clickable in-app guides) |
|
Performance monitoring |
|
Add the following IP addresses to your allow list to use Communications Mining and create connections:
Region | IPs |
---|---|
Europe |
34.91.100.206 |
US |
34.69.242.10 20.62.244.78 |
Japan |
34.84.144.176 |
Australia |
35.189.46.91 |
Canada |
34.152.10.176 |
Singapore |
35.240.179.214 |
Allow the following IP addresses for Communications Mining to sync emails from your Exchange. For details, check the Overview Exchange integration.
Region | IPs |
---|---|
Europe |
35.204.220.118 |
US |
34.71.173.219 |
Japan |
34.84.107.92 |
Australia |
34.87.223.173 |
Canada |
34.152.42.160 |
Singapore |
34.143.128.81 |
The following table lists the domains used by Data Service:
Scenario |
Domains to Allow |
---|---|
All Data Service operations |
|
Fetching static frontend content |
|
Sending notifications to notification hub |
|
Getting Feature Flag information |
|
Collection of telemetry |
|
The following table lists the domains used by Document Understanding:
Module or Scenario | Domains to Allow |
---|---|
Navigate to Document Understanding | https://*.uipath.com |
Azure | https://*.azure.com |
Network |
|
Feature flags | https://*.launchdarkly.com |
Telemetry | https://*.visualstudio.com |
Azure SignalR | https://*.service.signalr.net |
Storage |
|
Pendo | https://*.pendo.io |
Public endpoints | Check the Public endpoints page for the full list of public endpoints URLs. |
The following table lists the domains used by Insights:
Scenario |
Domains to Allow |
---|---|
Navigate to the Insights page |
|
Static IPs allow you to add a list of IPs for Log Export and Real Time Data Export features to the allowlist and not open your network to all external IPs.
Region | Functionality | IPs |
---|---|---|
Europe | Log Export |
4.209.242.155 52.158.117.70 48.209.163.160 132.220.192.40 |
Real Time Data Export |
48.209.165.211 4.209.26.11 | |
United States of America | Log Export |
4.209.242.155 134.33.227.198 134.33.128.26 |
Real Time Data Export |
4.156.106.136 134.33.152.158 | |
Australia | Log Export |
4.209.242.155 4.254.65.248 |
Real Time Data Export |
4.237.200.13 4.237.193.83 | |
Japan | Log Export |
4.209.242.155 135.149.20.42 |
Real Time Data Export |
74.176.138.15 135.149.17.81 | |
Canada | Log Export |
4.209.242.155 4.174.211.111 |
Real Time Data Export |
130.107.208.253 130.107.10.82 | |
Singapore | Log Export |
4.209.242.155 57.158.137.134 |
Real Time Data Export |
20.247.146.89 57.158.190.211 | |
India | Log Export |
4.209.242.155 98.70.224.34 |
Real Time Data Export |
135.235.177.71 135.235.249.14 | |
United Kingdom | Log Export |
4.209.242.155 131.145.43.57 |
Real Time Data Export |
74.177.240.23 85.210.75.139 | |
GXP United States of America | Log Export |
134.33.240.104 |
Real Time Data Export |
51.8.242.246 134.33.200.238 | |
GXP Europe | Log Export |
134.33.240.104 52.158.122.175 |
Real Time Data Export |
52.158.126.222 20.13.193.184 |
Limitations
For Log Export, Google Storage does not support inbound IP restriction.
- Insights US: North Europe, East US
- Insights Europe: North Europe, West Europe (For Community Licensing)
- Insights UK: North Europe, UK South
- Insights Canada: North Europe, Canada Central
- Insights Singapore: North Europe, Southeast Asia
- Insights India: North Europe, Central India
- Insights Australia: North Europe, Australia East
- Insights Japan: North Europe, Japan East
- Insights GXP Europe: North Europe, East US
- Insights GXP US: East US
Add the following IP addresses to your allow list to use Integration Service and create connections, as described in the following table:
Region | IPs | Environment |
---|---|---|
Europe |
34.247.224.172 108.128.2.184 54.78.70.51 20.93.15.208* 20.13.60.212* | Production |
US |
3.225.236.232 18.209.239.173 3.211.174.83 20.121.170.55* 20.72.203.238* | Production |
Japan |
18.180.58.90 35.72.149.94 35.75.176.28 20.89.117.202* 104.46.238.159* | Production |
Australia |
13.210.116.107 13.54.88.227 13.55.113.75 20.167.34.25* 20.11.199.185* | Production |
Canada | 20.200.104.214
20.220.98.56 | Production |
India |
4.224.9.5 13.71.90.136 | Production |
Singapore | 20.44.206.197 | Production |
United Kingdom |
172.165.145.81 51.141.6.153 | Production |
All |
3.67.182.72 18.156.115.90 52.57.115.254 | Staging |
*IP addresses marked with an asterisk (*) are designated for newly incorporated Azure regions. These IPs will supersede the existing regional IPs upon completion of the scheduled tenant migration process. For details, refer to the Integration Service release notes.
Robots send traffic to these Automation CloudTM Orchestrator domains. We recommend that you allow them to ensure proper functioning of your automations, as described in the following table:
Module or Functionality |
Domains to Allow |
---|---|
UiPath Orchestrator |
|
Automation CloudTM Robots - VM |
|
Storage |
If using Amazon s3 buckets:
|
Package and library feeds (library, tenant processes, and others) |
|
Azure SignalR |
|
Studio and Robot auto-update functionality |
|
Traffic Manager (internal) |
|
We recommend allowing these IPs, which send traffic from Orchestrator towards your resources. For details, refer to Orchestrator outbound IP addresses.
Community users
Region |
CIDR |
IPs |
---|---|---|
Europe (European Union) |
20.123.102.24/30 20.50.147.88/30 |
20.123.102.24 20.123.102.25 20.123.102.26 20.123.102.27 20.50.147.88 20.50.147.89 20.50.147.90 20.50.147.91 |
Enterprise users
Region |
CIDR |
IPs |
---|---|---|
Australia |
20.92.156.92/30 |
20.92.156.92 20.92.156.93 20.92.156.94 20.92.156.95 |
Canada |
20.116.141.44/30 |
20.116.141.44 20.116.141.45 20.116.141.46 20.116.141.47 |
United States |
20.124.53.40/30 20.121.182.72/30 20.121.104.124/30 |
20.124.53.40 20.124.53.41 20.124.53.42 20.124.53.43 20.121.182.72 20.121.182.73 20.121.182.74 20.121.182.75 20.121.104.124 20.121.104.125 20.121.104.126 20.121.104.127 |
Japan |
20.210.80.72/30 |
20.210.80.72 20.210.80.73 20.210.80.74 20.210.80.75 |
Europe (European Union) |
20.223.90.156/30 20.223.16.0/30 4.207.205.236/30 |
20.223.90.156 20.223.90.157 20.223.90.158 20.223.90.159 20.223.16.0 20.223.16.1 20.223.16.2 20.223.16.3 4.207.205.236 4.207.205.237 4.207.205.238 4.207.205.239 |
Singapore |
104.43.98.180/30 |
104.43.98.180 104.43.98.181 104.43.98.182 104.43.98.183 |
United Kingdom | 20.90.174.164/30 |
20.90.174.164 20.90.174.165 20.90.174.166 20.90.174.167 |
India | 4.224.102.80/30 |
4.224.102.80 4.224.102.81 4.224.102.82 4.224.102.83 |
Module or Scenario | Domains to Allow |
---|---|
Identity Server |
|
Static assets |
|
Azure SignalR |
|
Telemetry |
|
Upload files |
|
LaunchDarkly Feature Flags |
|
The following table lists the domains used by Solutions Management:
Scenario |
Domains to Allow |
---|---|
Navigate to the Solutions Management page |
|
Storage |
|
The following table lists the domains used by Studio Web:
Module or Functionality | Domains to Allow |
---|---|
Azure SignalR |
|
UiPath products |
|
UiPath products (in-app feedback) |
|
UiPath products (static assets) |
|
UiPath products (telemetry) |
|
Third-party services (clickable guides) |
|
Third-party services (feature flags provider) |
|
Third-party services (storage) |
|
Third-party services (telemetry) |
|
Third-party services (translations helper) |
|
If your company uses proxies, the URLs, described in the following table, need to be added to the Firewall Exceptions so the Task Mining desktop components connect to our web servers.
Component |
URL |
Port |
---|---|---|
Admin Portal |
|
443 |
Web Portal |
|
443 |
Pendo |
|
443 |
Azure App Insights |
|
443 |
Azure Signalr |
|
443 |
Avatars |
|
443 |
- Automation Cloud Portal
- Outbound IPs to enable a firewall for the customer-managed key
- Action Center
- AI Center
- AI Computer Vision
- Apps
- Automation Hub
- Automation Ops
- Communications Mining
- Inbound IPs
- Outbound IPs
- Data Service
- Document Understanding
- Insights
- Static IPs
- Integration Service
- Orchestrator
- Domains to add to the allow list
- Outbound IPs to add to the allow list
- Process Mining
- Solutions Management
- Studio Web
- Task Mining
- Test Manager