Versions Compared

Version Old Version 8 New Version 9
Changes made by

Helen Williams

Helen Williams

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Panel
panelIconId1f6a7
panelIcon:construction:
panelIconText🚧
bgColor#FFEBE6

This page was created to contain general notes/documentation for the CAS API and Slate integration that is CAS-agnostic. It is under construction.

...

Copy and save the password prior to saving changes, because once saved, the password will not be visible. You will need the password to configure the CAS API subscription with Liaison. 

Allowed Networks

In December 2023 - January 2024, Liaison migrated their CAS systems to AWS. This change required the list of “allowed networks“ assigned to the CAS/Liaison Service Account to be updated to include 7K+ possible IP addresses and CIDR subnets that might now be sending data to the SFTP server.

Below is a PDF of the announcement from Liaison with details about the migration timeline, and a txt file containing a comma-separated list of the AWS IP addresses, removing the CIDR subnets not supported by Slate. This file can be used to update the service account, but detailed instructions for how to generate it are included below for future reference.

View file
nameallowed_networks_IP_List_AWS.txt
View file
nameCAS Migration to the Cloud.pdf

To obtain the list of IP addresses:

  1. Go to https://ip-ranges.amazonaws.com/ip-ranges.json and copy the JSON file.

  2. Use a JSON converter to convert to an excel spreadsheet.

  3. Open the excel spreadsheet and use highlight text rules to identify any IP addresses that contain a CIDR notation between /0 and /15, then delete those from the spreadsheet (when this was done in 12/2023, there were only CIDR notations of 11 - 15). Slate will not allow these CIDR subnets for security reasons (they cover too wide a range of possible IP addresses, from 131,072 to 4,294,967,296 total IP addresses).

  4. Copy the column of IP addresses remaining and use a column to comma separated list converter to make the new list.

  5. In Slate, go to Database > Users > CAS/Liaison Service Account > Roles and scroll to the bottom where there is a field for “Allowed Networks.” Paste your comma separated list at the end, then save.

...

Allowed Networks (Deprecated January 2024)

Below are the IP addresses that are included in the “allowed networks” of existing CAS/Liaison Service accounts for future reference. It is unclear which exactly are used by the Liaison systems, the following list is provided for reference/troubleshooting.Update (12/13/2023): This page in the Liaison help website includes IP addresses that are “safe-listed.”

Code Block
CLEAN SLATE

12.130.14.3, *
35.196.40.74, *
35.237.218.144, *
35.237.169.192, 
34.74.5.60, 
35.185.121.56, 
34.74.128.171, 
104.196.102.47


TUSMGP

12.130.14.3, *
35.196.40.74, *
35.237.218.144, *
35.237.169.192, * 
108.26.138.40, x
130.64.2.186, x
130.64.35.32, x
3.224.174.183, x
52.0.120.196, x
52.2.196.251, x
52.71.217.11, x
54.161.89.200, x
54.205.199.53, x
130.64.3.197 x

...