Articles in this section
Articles in this section ▾
Overview - Enterprise Admin Panel
Users - Airtable Enterprise Admin Panel
Groups - Airtable Enterprise Admin Panel
Workspaces - Airtable Enterprise Admin Panel
Bases - Airtable Enterprise Admin Panel
Reports - Airtable Enterprise Admin Panel
Settings - Airtable Enterprise Admin Panel

Settings - Airtable Enterprise Admin Panel

The Settings page of the Admin Panel offers admins 3 main areas of global control over their organization’s Airtable account; Sharing & Access, Apps & Integrations, and SSO & Authentication. The controls in this section help to ensure the right mix of open creation and collaboration in Airtable to match your organization’s security protocols.

IN THIS ARTICLE

Overview
Sharing & Access
Apps & Integrations
SSO & Authentication

 

Overview

admin_panel_settings_overview.jpg

The Settings page can be accessed by clicking on the Settings option in the navigation sidebar of the Admin Panel. This will open up a page with three categories of settings. Clicking each tab will open up the corresponding options.

 

Sharing & Access

Invite restrictions

The invites setting allows admins to prevent users from inviting other users from outside of your Enterprise domain.

admin_panel_sharing_invites_toggle.jpg

If you toggle this option on, the “Email domain allowlist” option will appear. To allow a new external domain, click the collapsed down arrow so that it appears up and enter the domain (ex. airtable.com). To remove a previously allowed domain from the list, simply click the “x” icon next to that domain.

admin_panel_settings_sharing_allowlist.png

 

TIP

If you or your collaborators are having difficulties adding an external collaborator to a base or workspace, then have that external collaborator double-check that they have verified their email address with us as a first step.

 

The “Share link restrictions” section allows admins to set who can access share links across your organization. Individual share link restrictions can also be set within the base UI. This setting can be adjusted by clicking the “Edit” button. There are three options to choose from, each with separate options specific to them:

  1. Unrestricted
  2. Restricted
  3. Restricted Optional (Available by request)

admin_panel_settings_share_link_restrictions.jpg

Unrestricted

With this option, share links are unrestricted in the global settings, but can still be restricted on an individual link basis.

admin_panel_settings_share_link_unrestricted.jpg

Restricted

With this option, admins can prevent users outside of your domain from accessing shared links. Additional options include:

  • Email domain allowlist
  • Allow unrestricted access to password-protected shares
  • Allow unrestricted access to shared forms

admin_panel_settings_share_links_restricted.jpg

NOTE

If any share link has email domain restrictions or password enabled or an Enterprise admin has turned on 'Restricted' share link settings, then iCal integration links will cease to sync since the iCal link is no longer able to authenticate.

Restricted Optional

NOTE

If you do not see this option and would like to have it added, then please contact your Airtable CSM or Account Executive in order to gain access to this feature.

With this option, by default, shares are restricted to your domain. But, restrictions can be removed on individual shares. Additional options include:

  • Email domain allowlist
  • Keep existing shares unrestricted - Note that this option will only appear if your organization changes from “Unrestricted” share links to the “Restricted Optional” setting.

admin_panel_settings_share_links_restricted_optional.jpg

Since our Sync feature uses share links to connect a source base to one or many other bases, we also include an option to allow or disallow the ability for shared views to be synced to other bases.

admin_panel_settings_sync_share_views.jpg

 

User group restrictions

The next option under the Sharing category has to do with user groups. Toggling this option on means that only admins can create user groups, meaning that users without admin privileges will be unable to create or modify user groups.

admin_panel_settings_user_groups.jpg

 

Access

The final option in the Sharing category has to do with user access. Specifically, IP range restrictions can be set to prevent users from accessing Airtable unless they are logged into Airtable from an allowed device and/or network. Currently, only IPv4 protocol is supported.

admin_panel_settings_access.jpg

 

Apps & Integrations

Applications

There are two categories of Apps in this section of the Settings page: Apps by Airtable and Airtable partners and Third party apps. There are three options in either App category that allow Admins to control which Apps can be used:

  • Allow all - Allows users to access and use all third party apps.
  • Allow without network access - Disallows third party apps that send data to non-Airtable web servers, unless they’re added to the allowlist.
  • Allow none - Disallows all third party apps, unless they’re added to the allowlist

Apps by Airtable and Airtable partners are either created by Airtable or closely vetted apps that we have worked with reputable organizations on building and implementing.

 

admin_panel_settings_Airtable_Apps.jpg

Third party apps are those built and submitted to the Marketplace by third parties, and reviewed for security and functionality by Airtable. They do not include existing “Partner Apps” that Airtable has closely vetted.

admin_panel_settings_third_party_apps.jpg

NOTE

As of March 26, 2021 this setting will default to the “Allow without network access” option. Enterprise admins can select one of the other options to opt out of that default choice.

When an app is disallowed in your Enterprise, users will still be able to see all apps in the marketplace and click “install,” but will be met with an error message instructing them to contact their administrator when they attempt to run the app.

 

Development of custom code

When this option is turned on, users will not be able to interact with Airtable features that enable the deployment of custom code into your Enterprise environment. This includes the scripting app, script templates, the scripting action within Automations, as well as custom apps. To enable this functionality for your Enterprise, please review this setting to ensure that it is not disabled.

admin_panel_settings_custom_code.jpg

If an admin does disable this feature for your Enterprise, you can optionally add specific users to an allowlist such that they can use these custom code features. To do so, enter a user’s email address into the space provided, and click the “Allow” button. User’s previously added to the allowlist can be removed by clicking on the “x” next to their email address.

NOTE

This setting has been available via the Enterprise Admin Panel since March 2020. We recommend checking your Admin Panel settings to confirm that this setting is aligned with your security policies.

 

Integrations

The “Disable all integrations in Automations and External Source Sync, unless explicitly allowed” setting provides the option to prevent usage of these features where they may communicate with external services (outside of Airtable) unless explicitly allowed.

admin_panel_settings_integrations.jpg

An allowlist option will appear if you toggle on the option to “Disable all integrations in Automations, unless explicitly allowed.” You can then “Enable” or “Disable” each service based upon your organization’s security practices.

admin_panel_settings_integrations_allowlist.jpg

Additionally, at the bottom of the allowlist, admins will find the option to disable or enable all integrations.

admin_panel_settings_integrations_enable_disable_all.jpg

 

SSO & Authentication

To learn more about configuring your organization’s SSO settings, please visit this support article.

admin_panel_settings_SSO_authentication.jpg

Was this article helpful?

Related articles