Configurable security

Our top priority is to make your DocuSign experience safe and secure, and it’s our intention to provide the most robust and reliable service possible to enable your business transactions. We also want to proactively share information that may be of interest to you regarding our service and understand the requirement to configure security to the needs of your organization. This page outlines our configurable security features.

Whitelist for DocuSign service

DocuSign customers can configure their spam filters and other software to allow for the following whitelisted domains to be accepted.

Domains to white list:

We recommend allowing all subdomains under the following domains:

  • .docusign.com
  • .docusign.net

Akamai CDN:

To enhance network performance and security, DocuSign uses Akamai CDN for static content distribution. DocuSign browser applications use outgoing connections to docucdn-a.akamaihd.net.

IP addresses for DocuSign service

Customers can elect to explicitly allow Internet addresses advertised by our service. It’s important for those customers to keep up-to-date with our current IP address ranges.

DocuSign endpoint 

If customers only need to whitelist the DocuSign endpoint, the following IPs will apply:

North America-based and demo accounts (current and continuing):

  • **NEW 64.207.216.1 through 64.207.219.254
  • 162.248.184.1 through 162.248.187.254
  • 34.212.7.28
  • 34.213.201.254
  • 34.213.254.17
  • 34.215.124.54
  • 34.215.142.185
  • 34.215.203.190
  • 35.164.40.59
  • 35.167.67.7
  • 52.25.145.215
  • 52.27.85.20
  • 52.34.155.26
  • 52.41.95.219

European Union-based accounts (current and continuing):

  • 185.81.100.1 through 185.81.103.254

DocuSign email IPs

If customers need to whitelist DocuSign’s e-mail IPs, the following IPs will apply:

North America-based and demo accounts (current and continuing):

  • **NEW 64.207.216.1 through 64.207.219.254
  • 162.248.184.1 through 162.248.187.254
  • 34.212.7.28
  • 34.213.201.254
  • 34.213.254.17
  • 34.215.124.54
  • 34.215.142.185
  • 34.215.203.190
  • 35.164.40.59
  • 35.167.67.7
  • 52.25.145.215
  • 52.27.85.20
  • 52.34.155.26
  • 52.41.95.219
  • 52.25.139.174
  • 54.244.242.160
  • 54.244.242.186
  • 54.244.242.190
  • 54.244.242.214

European Union-based accounts (current and continuing):

  • 185.81.100.1 through 185.81.103.254
  • 54.93.78.134
  • 54.93.137.237
  • 54.93.151.48
  • 54.93.154.157
  • 54.93.162.246

Support for Sender Policy Framework (SPF) record checking

To flag and quarantine malicious spam on your mail servers, you should enable both Sender Policy Framework (SPF) lookup functionality and Domain-based Message Authentication, Reporting & Conformance (DMARC). The combination of these technologies helps to protect from malware spam attacks. You can learn more about SPF at http://www.openspf.org/ and DMARC at http://www.dmarc.org/.