SAP Cloud Platform Open Connectors

Configuring your System to Allow Access through a Range of IPs (Safelisting)

Safelisting, eg configuring your system to allow access through a specified range of IPs, is not recommended. The SAP Cloud Platform Open Connectors platform is a public cloud hosted by AWS, and shared IPs may change without notice; accordingly, the recipient would be safelisting all traffic from SAP Cloud Platform Open Connectors.

If you plan on using endpoints that need SAP Cloud Platform Open Connectors IPs to be safelisted, all IPs for the given environment need to be safelisted. For example, if you are using both a staging and a US production environment, then all the IPs for these environments need to be safelisted, but EU production IPs would not. This is because we cannot guarantee which IPs will actually be in use by our servers; accordingly, all IPs must be safelisted.

If safelisting by IP is the only option, the recipient domain will want to check for the most up-to-date IP information by downloading our ip-ranges file. This file will be updated whenever new IPs are added to SAP Cloud Platform Open Connectors' IP range. If a receiving server is safelisting the range, it's recommended they periodically check to ensure they have the current range. To be notified when new IPs are added to the list, navigate to Best Practices, and click the Subscribe button.

Note: to make sure your category subscriptions make it to your inbox, you may need to add our release notes notification service email address ( to a list of safe senders.