We want to restrict access to our DXP test environments, are there any best practice on that from Optimizely side.
The otherthing we also want to restrict access to Optimizely admin site (on producation) to only our internal API. It shouldn't be accessible from public IP. Is this something that can be achieved ?
Any input would be appreciated
Yes, you can request support to restrict access by IP or IP range
I asked Opti support about this for a project that we are setting up in DXP at the moment, and they say we can do it ourselves in code. But support can do it for us as well?
They said:"You can configure this in your code, here is the documentation for configuring this: https://docs.developers.optimizely.com/digital-experience-platform/docs/restricting-environment-access"
Yes, there are several layers of restricting access - each with pros and cons. what support (or rather, other teams that process your request) can setup firewall/CDN rules to allow certain IPs to have access, or to be denied access.