Clock IP Validation Rule

If your WFM solution is accessible from the internet and mobility is used to collect employee swipes, employees can swipe from any location that is connected to the internet, even if they are not physically in the workplace.

To prevent employee swipes from unauthorized locations (for instance, on their way to work), a clock IP validation rule will validate whether a clock swipe is permitted from the originating session's IP address. As a WFM administrator, you can create an IP Address Whitelist that defines the range of acceptable IP addresses for clock swipes.

The workflow for setting this up is as follows:

  • Use a clock IP validation rule that is associated with a reader type such as mobility.
  • Create an IP Address Whitelist with the acceptable range of IP addresses for your employees.
  • Create an IP Address Group that contains all of the IP Address Whitelists for a particular reader type. Reader types can contain multiple IP Address Groups which are used group IP addresses into a logical set.

If you want to remove a clock IP validation that was previously configured for a mobility reader type, see Removing a clock IP validation rule.