Whitelist policies let you bypass threat detection for trusted IP addresses or devices. After you integrate Captcha 2.0, create a whitelist policy to allow traffic from specific IP addresses, Classless Inter-Domain Routing (CIDR) blocks, or devices identified by CertifyID.
A whitelist policy takes effect approximately 5 minutes after creation and cannot be edited afterward. If a policy is no longer needed, you must delete it. Plan your entries carefully before saving.
Prerequisites
Before you begin, ensure that you have:
Activated Alibaba Cloud Captcha 2.0
Add a whitelist policy
Log on to the Captcha 2.0 console. In the left navigation pane, choose Security Management > Whitelist Policy.
Click Add Whitelist, configure the parameters, and then click OK. The system adds the specified IP addresses or devices to the whitelist.
Parameter Description Whitelist type Select IP or Device (CertifyID). IP or CIDR block Enter an IP address or CIDR block, then press Enter to confirm. Add up to 5 entries per operation. CertifyID Enter a CertifyID, then press Enter to confirm. The system uses the CertifyID to retrieve device information. Only CertifyIDs generated within the last 24 hours are queryable. Add up to 5 entries per operation. Description Enter a description. Maximum 100 characters.
After a whitelist policy takes effect, threat detection is skipped for matching traffic. The following checks are still enforced: checksums and puzzle answer verification. Requests are blocked if they contain parameter errors or incorrect puzzle answers.
More operations
Delete a whitelist policy
In the Actions column, click Delete next to the policy you want to remove. In the dialog box, click OK.
Deletion cannot be undone. After deletion, the policy status changes to Deleted.
Filter whitelist policies
Above the policy list, filter by creation date or status.