Use zones in routing rules
Routing rules let you direct users to an identity provider based on their location, device, email domain, attributes, or the app they're attempting to access. You can include network zones in a routing rule to control the IP addresses where the rule applies. The IP zones that you create and the default LegacyIpZone are both eligible, but the BlockedIpZone is not.
Before you begin
You must have configured at least one Identity Provider before you can use zones in routing rules. See Identity Providers.
Configure a routing rule
-
In the Admin Console, go to .
-
Click Add Routing Rule.
-
Enter a descriptive name for the rule that you want to create in the Rule Name field.
-
For IF User's IP, select where this rule applies:
-
Select In zone to apply the rule if the user's IP address is within the zone.
-
Select Not in zone to apply the rule if the user's IP address isn't in the zone.
-
Select All Zones or type part of the zone name to specify the zones where the rule applies. For information about creating zones, see Create an IP zone.
-
-
Configure other settings for the device, app, user, and Identity Provider where the rule applies, then click Create Rule.
-
Click Activate.