Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Public link access only from internal network

Jan Velebny
Jan Velebny
Contributor
August 7, 2025

We would like to allow "Public links" for our colleagues (without access to Confluence) as "ready only"  and only with our company domain. 

Can this policy be set up somehow?

Thank you

Jan

Answer
Watch
Like # people like this
318 views

3 answers

2 votes
Kristian Klima
Kristian Klima
Community Champion
August 8, 2025

Hello @Jan Velebny 

To allow your company users without Confluence seats to access confluence content, you can use one of the follownig apps.

(To my best knowledge, only those two apps can help)

The app

a) creates a static website from you Confluence content

b) allows you to control access to that website with your SSO scheme.

At Emplifi, we're using Scroll Viewport to create a static website with the Internal version of the documentation and controll access with our SSO. You can determine who from your employees has access to such a site - all, specific roles, etc. 

Reply
1 vote
Marc - Devoteam
Marc - Devoteam
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 7, 2025

HI @Jan Velebny 

No this is not possible, a created public link can be viewed by anyone on the internet if they have the link and as long as the link is active.

The content is always view only.

See, how-secure-are-public-links 

View More Comments
Marc - Devoteam
Marc - Devoteam
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 8, 2025

Hi @Jan Velebny as @Thiago P _Atlassian Support_ 

mentions,

Whitelisting can be an option, but it can be cumbersome if people need or want to access the pages outside the office.

Like
Reply
0 votes
Thiago P _Atlassian Support_
Thiago P _Atlassian Support_
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
August 7, 2025

Hey there @Jan Velebny ,

As @Marc - Devoteam mentioned, Public Links are available to the whole Internet as long as they have the direct URL to the page (which is not indexed by search engines such as Google).

However, using Public Links in combination with IP Allowlist policies should work for you as access can be restricted to your Site for a specific list of IPs (or IP ranges using CIDR notation) used by your Company. Usually offices and VPNs have predefined outbound proxies that can be used for this.

Make sure to check our documentation: https://support.atlassian.com/security-and-access-policies/docs/specify-ip-addresses-for-product-access/

A few worthy notes:

  • this feature is available in the Premium and Enterprise plans
  • your company is responsible for coming up with a list of IPs and maintaining it

We have seen a number of Customers implement this strategy, either with Public Links or Anonymous Access.

Hope this helps!  =]

View More Comments
Jan Velebny
Jan Velebny
Contributor
August 11, 2025

Hello Thiago,

thanks for your reply, very usefull.

In case we implement IP Allowlist policy, we will not affect our guest users outside of our organization? or users with we shared pages via "external share", will they have still access to contect where they had access before?

Thanks

Jan

Like Thiago P _Atlassian Support_ likes this
Thiago P _Atlassian Support_
Thiago P _Atlassian Support_
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
August 12, 2025

Hi @Jan Velebny , great question.

All users - including Guests - will be affected by IP Allowlist policies.

If you have Guests from outside your Organization, you'll need to include their source IP ranges as well.

If that's not a viable approach, then restricting Public Links to your company will not be possible.

Like
Jan Velebny
Jan Velebny
Contributor
August 12, 2025

Thank you Thiago,

so its mean that in case we implement IP Allowlist policy but we will not include our guest users, they will lost the access to Confluence?!

Like Thiago P _Atlassian Support_ likes this
Marc - Devoteam
Marc - Devoteam
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
August 13, 2025

Hi @Jan Velebny 

Yes, they will lose access.

Like Jan Velebny likes this
Jan Velebny
Jan Velebny
Contributor
August 13, 2025

Sorry just, another question came to my mind with adding IP Allowlist policy, as we have many branches, is there any limit how many IP ranges can I add to the allowlist?

Thanks

Jan

Like Thiago P _Atlassian Support_ likes this
Thiago P _Atlassian Support_
Thiago P _Atlassian Support_
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
August 13, 2025

Hello @Jan Velebny ,

Yes, you can add up to 500 entries for each Product.

From the link I previously shared, under 'What values can you add?':

"You can set up 500 IP addresses or network blocks per app. We support IPv4 for individual IP address. If you're entering a network block, we support the CIDR notation standard for specifying a block of IP addresses. Refer to CIDR notation more details about how to use CIDR notation."

Hope this helps!  =]

Like
Jan Velebny
Jan Velebny
Contributor
August 13, 2025

yes, thank you I saw, but it is not clear if I set example range 101.112.10.1-254 will count as one entry or will count as 254?

Like
Thiago P _Atlassian Support_
Thiago P _Atlassian Support_
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
August 13, 2025

Oh I see, thanks for clarifying - ranges are counted as one entry only, so you can add multiple ranges (up to 500) regardless of the number of individual IPs they cover.

Like Marc - Devoteam likes this
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
PREMIUM
PERMISSIONS LEVEL
Product Admin
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security