Whitelisting NHS IP ranges for JWKS access

Rinaldo_Tempo · 30 July 2025 09:14

Our devops team restrict access to our web server based on the source IP addresses/ranges used by external clients. If we host a JWKS endpoint on our web server, would NHS Digital be able to tell us the IP ranges used for JWKS requests to this endpoint? (both for non-production and production).

At this stage, I don’t need to know what those ranges are, just if NHS Digital are able to provide that information.

Thanks,

Rinaldo

vikas.nautiyal1 · 4 August 2025 08:21

@Rinaldo_Tempo Yes we have al the ip ranges for both non prod and Prod environment of APIGEE.

Prod Org - Prod Environment
34.89.0.111 34.89.69.6

All other combinations
35.197.254.55 35.246.55.143

Topic		Replies	Views
Care Identity email domain allow list Care Identity Service (CIS2)	1	114	6 August 2024
About the API Platform API Platform	1	481	21 December 2023
Production API - Pending Approval NHS Website Content API	0	38	30 October 2025
INT - JWKS Endpoint error API Platform	11	167	11 April 2025
Requests to integration test endpoint unauthorised despite valid API key NHS Website Content API onboarding	12	319	21 May 2024

Whitelisting NHS IP ranges for JWKS access

Related topics