Which Internet Protocol (IP) addresses (subnets) compose the Ariba Network and Ariba on-demand solutions for firewall validation?
Ariba strongly encourages you to validate postings from Ariba Network using Hypertext Transport Protocol Secure (HTTPS) client certification of service.ariba.com, rather than hard-coding IP address access through firewalls.
Nonetheless, if an IP range is required, open the following range of IP addresses to support the full set of servers composing the Ariba Network. This list applies for Applicability Statement 2 (AS2) inbound traffic (from Ariba) to suppliers. The same IP range applies to Ariba on-demand solutions, such as Ariba Procure-to-Pay and Ariba Sourcing Pro. This also applies to the advanced security front door '-2' URL's.
18.104.22.168 to 22.214.171.124
126.96.36.199 to 188.8.131.52
184.108.40.206 to 220.127.116.11
18.104.22.168 to 22.214.171.124
126.96.36.199 to 188.8.131.52
184.108.40.206 to 220.127.116.11
18.104.22.168 to 22.214.171.124
126.96.36.199 to 188.8.131.52
184.108.40.206 to 220.127.116.11
18.104.22.168 to 22.214.171.124
126.96.36.199 to 188.8.131.52
184.108.40.206 to 220.127.116.11
API Developer Portals:
api.ariba.com: 18.104.22.168 to 22.214.171.124
openapi.ariba.com: 126.96.36.199 to 188.8.131.52
If you have a stateful firewall, port is 443. If you are not using stateful firewall, you will also have to enable established connection
From the Ariba Network perspective, any company that receives HTTPS posts from the Ariba Network may require this information. Ariba Buyer customers should not require this data, unless they allow access via punch-in from the Ariba Network.
Verification of Ariba ownership of IP address range:
Core Procurement > Core Administration > Application Integration (between Buying & Sourcing)