System requirements for Adobe Acrobat Sign

System requirements

The following system requirements apply to Adobe Acrobat Sign (formerly Echosign and Adobe Sign).

Supported Operating Systems

  • Microsoft Windows 10 or newer
  • MacOS 11 (Big Sur) or newer

Supported Browsers

The latest versions of:

  • Safari
  • Chrome
  • Edge
  • Firefox
Note:

The Microsoft Edge browser does not natively support 256-bit AES encryption of PDF files. If you are using the Edge browser, please ensure you are running the latest version of Adobe Reader.

Mobile app

Note:

Acrobat Sign mobile apps support the most recent released versions of iOS and Android:

  • iOS version 15 and above
  • Android version 10 and above

Language versions

US English

UK English

French

German

Spanish

Catalan

Basque

Brazilian Portuguese

Portuguese

Japanese

Chinese (Simplified)

Chinese (Traditional)

Korean

Indonesian

Malay

Thai

Vietnamese

Croatian

Czech

Polish 

Romanian

Russian

Slovenian

Slovakian 

Turkish

Ukrainian

Danish

Dutch

Finnish

Hungarian

Icelandic

Italian

Norwegian

Swedish

Supported document formats

  • Adobe PDF (.pdf)
  • Microsoft Word (.doc and .docx)
  • Microsoft Excel (.xls and .xlsx)
  • Microsoft PowerPoint (.ppt and .pptx)
  • Text (.txt)
  • Rich Text (.rtf)
  • Graphics (.tif, .jpg, .jpeg, .gif, .bmp, and .png)
  • Web (.htm or .html)

Software required to view a signed document

  • Adobe Reader 9.0 or later for documents secured with AES 128-bit encryption or lower
  • Adobe Reader 10 or later for documents secured with AES 256-bit encryption

Adobe online services are available only to users 13 and older and require agreement to additional terms and the Adobe Privacy Policy. Online services are not available in all countries or languages, may require user registration, and may be discontinued or modified in whole or in part without notice. Additional fees or subscription charges may apply.

Software required to sign a document

  • Electronic signatures: Applied via any supported browser
  • Cloud-based digital signatures: Applied via any supported browser
  • Digital signatures via “Download and Sign with Acrobat”: Must use Adobe Acrobat or Adobe Acrobat Reader XI v11.0.7 or later

Domains to explicitly allow

Users with restrictive email security will need to explicitly permit inbound email from adobesign@adobesign.com to avoid filtering.

The out-bound email IP ranges for Adobe Acrobat Sign can be found here >

Accounts with restrictive network security will need to explicitly permit Adobe required domain names.   The following domains must be allowed to ensure basic functionality:

  • adobesign.com
  • adobesigncdn.com
  • documentcloud.adobe.com (This is required for the Manage and Home pages)
  • echosign.com
  • echocdn.com
Note:

Accounts with very restrictive network security will need to explicitly permit the large lists below

Comprehensive domain name lists (Updated February 27th, 2024)

Customers should first grant access to all of the domains on the Adobe Minimal Allowlist and then allow the Acrobat Sign-specific domains below:

Core Adobe Acrobat Sign

*.adobesign.com
*.adobesigncdn.com
*.echocdn.com
*.echosign.com
acrs.adobe.com
fonts.googleapis.com
fonts.gstatic.com
p.typekit.net
p13n.adobe.io
use.typekit.net
www.adobe.com

Document Cloud

acrobat.adobe.com
cloud.acrobat.com
files.acrobat.com
*.documents.adobe.com
acroipm2.adobe.com
adobesearch-sec-uss.adobe.io
ans.oobesaas.adobe.com
byof.adobe.io
cc-api-behance.adobe.io
cc-api-data.adobe.io
cc-collab.adobe.io
ccext.adobe.io
commerce.adobe.com
dc-api.adobecontent.io
documentcloud.adobe.com
geo.adobe.com
geo2.adobe.com
notify.adobe.io
pdfnow.adobe.io
pgc.adobe.io
prod.acp.adobeoobe.com
send.acrobat.com
server.messaging.adobe.com
ui.messaging.adobe.com

Identity and sign-in

adobeid-na1.services.adobe.com
adobeid.services.adobe.com
auth.services.adobe.com
federatedid-na1.services.adobe.com
na1e-acc.services.adobe.com
acc.adobeoobe.com
accounts.adobe.com
acp-ss-ue1.adobe.io
*.account.adobe.com
api.typekit.com
ars.oobesaas.adobe.com
assets.adobedtm.com
cdn-ffc.oobesaas.adobe.com
data.typekit.net
ffc-static-cdn.oobesaas.adobe.com
fonts.adobe.com
ims-na1.adobelogin.com
ims-prod06.adobelogin.com
ims-prod07.adobelogin.com
lcs-cops.adobe.io
lcs-entitlement.adobe.io
lcs-robs.adobe.io
lcs-ulecs.adobe.io
licensing.adobe.com
lm.licenses.adobe.com
mir-s3-cdn-cf.behance.net
*.onelogin.com
oobe.adobe.com
polka.typekit.com
prod-rel-ffc-ccm.oobesaas.adobe.com
prod.adobeccstatic.com
public.adobecc.com
scss.adobesc.com
sso.behance.net
state.typekit.net
static.adobelogin.com
wwwimages.adobe.com
wwwimages2.adobe.com

CSC provider:

globalsign.time4mind.com
services.time4mind.com
bnkidse.time4mind.com
amazon.time4mind.com
ftn.time4mind.com
adobe.time4mind.com
nemid.time4mind.com
bnkidno.time4mind.com
idin.time4mind.com
amazon.time4mind.com
ress.infocert.it
cloudsign.webnotarius.pl
service.csctest.online
msign.transsped.ro
cloud-ref.sign-me.de
esign.digidentity.eu
cloud.sign-me.de
idp.quovadisglobal.com
sign.prd.itsme.services
s1-server.remotesign.entrust.net
one.ch.digicert.com
wlcsc.worldline-solutions.com
connect.cleverbase.com
qs.prime-sign.com
one.digicert.com
one.nl.digicert.com
core-hermes.zealid.com
csc.universign.com
csc.sk.ee
cscservice.adobe.com
csc.isignet.cn
csc.vida.id
csc.trustpro.eu
cscproxy01.seiko-cybertime.jp
csc-demo.trustpro.eu
uidai.gov.in
api.singpass.gov.sg

Signer authentication using social:

login.yahoo.com
api.twitter.com
facebook.com

Payments Integration:

api.sandbox.braintreegateway.com
origin-analytics-sand.sandbox.braintree-api.com
assets.braintreegateway.com
paypal.com
paypalobjects.com
s3-us-west-2.amazonaws.com
dc-api.adobe.io

Widgets:

app.box.com
login.microsoftonline.com
echosign.zendesk.com
adminconsole.adobe.com
auth.services.adobe.com

Administrative and Help pages (Admin Console and helpx)

adminconsole.adobe.com
bps-il.adobe.io
helpx.adobe.com
video.tv.adobe.com

Acrobat Package downloads from Admin Console

s3.amazonaws.com/tron-ffc-icons-prod/
tron-prod-customized-user-packages.s3.amazonaws.com

Analytics and Tracking

*.aptrinsic.com
js-agent.newrelic.com
cdn.cookielaw.org
geolocation.onetrust.com
ec.walkme.com
sstats.adobe.com
adobe.tt.omtrdc.net
privacyportal.onetrust.com
bam-cell.nr-data.net:443
bam.nr-data.net
cdn.tt.omtrdc.net
adobemobiledev.demdex.net
api.demandbase.com
cm.everesttech.net
*.demdex.net

Integrations:

echosignforsalesforce.com
adobesignforsalesforce.com

Google Login / Drive

*.google.com
*.googleusercontent.com
*.googleapis.com

Microsoft Power Automate

management.azure.com
login.microsoft.com
login.windows.net
login.microsoftonline.com
login.live.com
secure.aadcdn.microsoftonline-p.com
graph.microsoft.com
*.azure-apim.net
*.flow.microsoft.com
*.powerautomate.com
*.powerapps.com
*.azureedge.net
nps.onyx.azure.net
webshell.suite.office.com
*.dynamics.com
go.microsoft.com
download.microsoft.com

Sandbox:

*.adobesignsandbox.com
*.adobesignsandboxcdn.com
*.documentssandbox.adobe.com
*.echocdnsandbox.com
*.echosignsandbox.com

Others:

service.csctest.online
s1-server.remotesign.entrust.net
msign-test.transsped.ro
echosigntestaccount.onelogin.com

Core Adobe Acrobat Sign

gps.na1.adobesign.com
gps.adobesign.com
gps.na1.echosign.com
gps.echosign.com
secure.adobesign.com
secure.na1.adobesign.com
api.na1.adobesign.com
secure.na2.adobesign.com
api.na2.adobesign.com
secure.na3.adobesign.com
api.na3.adobesign.com
secure.na4.adobesign.com
api.na4.adobesign.com
secure.eu1.adobesign.com
api.eu1.adobesign.com
secure.eu2.adobesign.com
api.eu2.adobesign.com
secure.au1.adobesign.com
api.au1.adobesign.com
secure.jp1.adobesign.com
api.jp1.adobesign.com
secure.in1.adobesign.com
api.in1.adobesign.com
secure.adobesigncdn.com
static.adobesigncdn.com
secure.na1.adobesigncdn.com
secure.na2.adobesigncdn.com
secure.na3.adobesigncdn.com
secure.na4.adobesigncdn.com
secure.eu1.adobesigncdn.com
secure.eu2.adobesigncdn.com
secure.au1.adobesigncdn.com
secure.jp1.adobesigncdn.com
secure.in1.adobesigncdn.com
secure.echocdn.com
static.echocdn.com
secure.na1.echocdn.com
secure.na2.echocdn.com
secure.na3.echocdn.com
secure.na4.echocdn.com
secure.eu1.echocdn.com
secure.eu2.echocdn.com
secure.au1.echocdn.com
secure.jp1.echocdn.com
secure.in1.echocdn.com
secure.echosign.com
secure.na1.echosign.com
api.na1.echosign.com
secure.na2.echosign.com
api.na2.echosign.com
secure.na3.echosign.com
api.na3.echosign.com
secure.na4.echosign.com
api.na4.echosign.com
secure.eu1.echosign.com
api.eu1.echosign.com
secure.eu2.echosign.com
api.eu2.echosign.com
secure.au1.echosign.com
api.au1.echosign.com
secure.jp1.echosign.com
api.jp1.echosign.com
secure.in1.echosign.com
api.in1.echosign.com
fonts.googleapis.com
fonts.gstatic.com
p.typekit.net
p13n.adobe.io
use.typekit.net
www.adobe.com

Document Cloud

acrobat.adobe.com
acrs.adobe.com
cloud.acrobat.com
files.acrobat.com
na1.documents.adobe.com
api.na1.documents.adobe.com
na2.documents.adobe.com
api.na2.documents.adobe.com
na3.documents.adobe.com
api.na3.documents.adobe.com
na4.documents.adobe.com
api.na4.documents.adobe.com
eu1.documents.adobe.com
api.eu1.documents.adobe.com
eu2.documents.adobe.com
api.eu2.documents.adobe.com
au1.documents.adobe.com
api.au1.documents.adobe.com
jp1.documents.adobe.com
api.jp1.documents.adobe.com
in1.documents.adobe.com
api.in1.documents.adobe.com
acroipm2.adobe.com
adobesearch-sec-uss.adobe.io
ans.oobesaas.adobe.com
byof.adobe.io
cc-api-behance.adobe.io
cc-api-data.adobe.io
cc-collab.adobe.io
ccext.adobe.io
commerce.adobe.com
dc-api.adobecontent.io
documentcloud.adobe.com
geo.adobe.com
geo2.adobe.com
notify.adobe.io
pdfnow.adobe.io
pgc.adobe.io
prod.acp.adobeoobe.com
send.acrobat.com
server.messaging.adobe.com
ui.messaging.adobe.com

Identity and sign-in

adobeid-na1.services.adobe.com
adobeid.services.adobe.com
auth.services.adobe.com
federatedid-na1.services.adobe.com
na1e-acc.services.adobe.com
acc.adobeoobe.com
accounts.adobe.com
acp-ss-ue1.adobe.io
api.account.adobe.com
ids-proxy.account.adobe.com
api.typekit.com
ars.oobesaas.adobe.com
assets.adobedtm.com
cdn.onelogin.com
cdn-ffc.oobesaas.adobe.com
data.typekit.net
ffc-static-cdn.oobesaas.adobe.com
fonts.adobe.com
ims-na1.adobelogin.com
ims-prod06.adobelogin.com
ims-prod07.adobelogin.com
lcs-cops.adobe.io
lcs-entitlement.adobe.io
lcs-robs.adobe.io
lcs-ulecs.adobe.io
licensing.adobe.com
lm.licenses.adobe.com
mir-s3-cdn-cf.behance.net
oobe.adobe.com
polka.typekit.com
portal-cdn.onelogin.com
prod-rel-ffc-ccm.oobesaas.adobe.com
prod.adobeccstatic.com
public.adobecc.com
scss.adobesc.com
sso.behance.net
state.typekit.net
static.adobelogin.com
web-login-v2-cdn.onelogin.com
www.onelogin.com
wwwimages.adobe.com
wwwimages2.adobe.com

Signer authentication using social:

login.yahoo.com
api.twitter.com
facebook.com

CSC provider:

globalsign.time4mind.com
services.time4mind.com
bnkidse.time4mind.com
amazon.time4mind.com
ftn.time4mind.com
adobe.time4mind.com
nemid.time4mind.com
bnkidno.time4mind.com
idin.time4mind.com
amazon.time4mind.com
ress.infocert.it
cloudsign.webnotarius.pl
service.csctest.online
msign.transsped.ro
cloud-ref.sign-me.de
esign.digidentity.eu
cloud.sign-me.de
idp.quovadisglobal.com
sign.prd.itsme.services
s1-server.remotesign.entrust.net
one.ch.digicert.com
wlcsc.worldline-solutions.com
connect.cleverbase.com
qs.prime-sign.com
one.digicert.com
one.nl.digicert.com
core-hermes.zealid.com
csc.universign.com
csc.sk.ee
cscservice.adobe.com
csc.isignet.cn
csc.vida.id
csc.trustpro.eu
cscproxy01.seiko-cybertime.jp
csc-demo.trustpro.eu
uidai.gov.in
api.singpass.gov.sg

Payments Integration:

api.sandbox.braintreegateway.com
origin-analytics-sand.sandbox.braintree-api.com
assets.braintreegateway.com
paypal.com
paypalobjects.com
s3-us-west-2.amazonaws.com
dc-api.adobe.io

Widgets:

app.box.com
login.microsoftonline.com
echosign.zendesk.com
adminconsole.adobe.com
auth.services.adobe.com

Administrative and Help pages (Admin Console and helpx)

adminconsole.adobe.com
bps-il.adobe.io
helpx.adobe.com
video.tv.adobe.com

Acrobat Package downloads from Admin Console

s3.amazonaws.com/tron-ffc-icons-prod/
tron-prod-customized-user-packages.s3.amazonaws.com

Analytics and Tracking

esp.aptrinsic.com
web-sdk.aptrinsic.com
app-be.aptrinsic.com
js-agent.newrelic.com
cdn.cookielaw.org
geolocation.onetrust.com
ec.walkme.com
sstats.adobe.com
adobe.tt.omtrdc.net
privacyportal.onetrust.com
bam-cell.nr-data.net:443
bam.nr-data.net
cdn.tt.omtrdc.net
adobemobiledev.demdex.net
api.demandbase.com
cm.everesttech.net
adobe.demdex.net
adobedc.demdex.net

Integrations:

echosignforsalesforce.com
adobesignforsalesforce.com

Google Login / Drive

accounts.google.com
adservice.google.com
android.clients.google.com
apis.google.com
docs.google.com
lh3.google.com
lh3.googleusercontent.com
lh4.googleusercontent.com
mtalk.google.com
play.google.com
storage.googleapis.com
update.googleapis.com
www.google.com
www.googleapis.com
www-onepick-opensocial.googleusercontent.com

Microsoft Power Automate

management.azure.com
login.microsoft.com
login.windows.net
login.microsoftonline.com
login.live.com
secure.aadcdn.microsoftonline-p.com
graph.microsoft.com
*.azure-apim.net
*.flow.microsoft.com
*.powerautomate.com
*.powerapps.com
*.azureedge.net
nps.onyx.azure.net
webshell.suite.office.com
*.dynamics.com
go.microsoft.com
download.microsoft.com

Sandbox:

gps.echosignsandbox.com
gps.na1.echosignsandbox.com
gps. adobesignsandbox.com
gps.na1.adobesignsandbox.com
secure.adobesignsandbox.com
secure.echosignsandbox.com
secure.na1.adobesignsandbox.com
secure.na1.adobesignsandboxcdn.com
secure.adobesignsandboxcdn.com
api.na1.adobesignsandbox.com
secure.na1.documentssandbox.adobe.com
documentssandbox.adobe.com
na1.documentssandbox.adobe.com
api.na1.documentssandbox.adobe.com
secure.na1.echocdnsandbox.com
secure.echocdnsandbox.com
secure.na1.echosignsandbox.com
api.na1.echosignsandbox.com

Others:

service.csctest.online
s1-server.remotesign.entrust.net
msign-test.transsped.ro
echosigntestaccount.onelogin.com

IP Ranges to explicitly allow

If your security policy is designed to explicitly allow IP addresses on your network, identify the region in which your account is deployed and add the associated IP ranges to your firewall.

  • Ingress addresses (previously referred to as Core addresses) should be applied to all use cases.
  • Egress addresses (previously referred to as Webhook and Callback addresses) are only required if using the webhook service or callback URLs. (Both in Production and Sandbox environment.) The webhook and callback services use the same IP addresses. 
  • Sandbox address only pertains to the entitled Sandbox environment.
Note:

Acrobat Sign will deploy the Akamai WAF (Web Application Firewall) integration to the Acrobat Sign Production starting January 13, 2025

This enhancement routes traffic to Acrobat Sign application servers via the Akamai infrastructure, improving the service security and robustness. As a result, web service and API frontend servers will no longer use specific fixed IP addresses.

If your network security rules restrict outbound connections based on IP allow lists, this integration with Akamai WAF will make the Acrobat Sign service inaccessible. Therefore, any IP-based restrictions for outbound connections to the Acrobat Sign services must be removed.

Note that this does not affect the IP addresses used by Acrobat Sign servers to connect to your servers for webhooks/callbacks.

Sandbox IP address:

  • 4.246.0.144/28
  • 13.55.51.87
  • 13.55.172.219
  • 13.55.174.148 
  • 20.36.219.136
  • 20.36.220.46
  • 20.197.114.7
  • 20.197.115.164
  • 35.154.168.186
  • 35.154.250.71
  • 35.156.156.191
  • 35.157.18.96
  • 51.105.160.39
  • 51.105.163.48
  • 52.204.112.48
  • 52.205.27.150
  • 52.24.229.94
  • 52.24.62.165
  • 52.25.112.104
  • 52.184.233.100
  • 52.184.233.96/28
  • 52.199.157.146
  • 52.211.233.170
  • 52.213.27.89
  • 52.213.4.207
  • 54.64.99.195
  • 54.205.20.91
  • 4.152.152.80/28
  • 4.152.152.112/28
  • 4.152.152.160/28
  • 4.152.153.16/28
  • 4.152.153.64/28
  • 4.152.153.224/28
  • 4.152.154.0/28
  • 4.152.154.48/28
  • 4.152.154.80/28
  • 4.152.154.96/28
  • 4.152.154.176/28
  • 4.152.154.224/28
  • 4.152.155.64/28
  • 4.152.155.96/28
  • 20.7.230.176/28
  • 20.7.230.192/28
  • 20.1.216.176/28
  • 20.1.217.128/28
  • 20.1.217.224/28
  • 20.1.217.240/28
  • 20.1.218.0/28
  • 20.1.218.16/28
  • 20.1.218.64/28
  • 20.1.218.80/28
  • 20.1.218.192/28
  • 20.1.218.208/28
  • 20.1.219.0/28
  • 20.1.219.16/28
  • 20.1.219.32/28
  • 20.1.219.48/28
  • 20.1.219.96/28
  • 20.1.219.112/28

North America:

Core addresses:

  • 3.236.206.64/27
  • 4.152.91.192/28
  • 4.152.91.208/28
  • 4.152.91.224/28
  • 4.152.91.240/28
  • 4.152.92.0/28
  • 4.152.92.16/28
  • 4.152.92.32/28
  • 4.152.92.48/28
  • 4.152.92.64/28
  • 4.152.92.80/28
  • 4.152.92.96/28
  • 4.152.92.112/28
  • 4.152.92.128/28
  • 4.152.92.144/28
  • 4.152.92.160/28
  • 4.152.92.176/28
  • 4.152.210.201
  • 20.7.248.208/28
  • 20.7.249.0/28
  • 20.7.249.16/28
  • 20.7.249.64/28
  • 20.7.249.80/28
  • 20.7.249.128/28
  • 20.7.249.144/28
  • 20.7.250.112/28
  • 20.7.250.128/28
  • 20.7.250.144/28
  • 20.7.250.96/28
  • 20.7.251.0/28

 

  •  20.7.251.112/28
  • 20.7.251.16/28
  • 20.7.251.32/28
  • 20.7.251.96/28
  • 20.115.179.0/28
  • 20.115.179.48/28
  • 20.115.179.112/28
  • 20.115.179.128/28
  • 20.115.179.160/28
  • 20.115.179.176/28
  • 20.115.179.192/28
  • 20.115.179.224/28
  • 20.115.180.32/28
  • 20.115.180.48/28
  • 20.115.180.64/28
  • 20.115.180.80/28
  • 20.115.180.96/28
  • 20.115.180.112/28
  • 20.115.180.192/28
  • 20.115.180.224/28
  • 40.67.155.147/32
  • 40.67.154.249/32
  • 40.67.155.185/32
  • 40.67.155.112/32
  • 44.234.124.128/27
  • 52.71.63.224/27 
  • 52.35.253.64/27
  • 52.236.2.148
  • 52.250.85.48/28

 

Webhook/Callback addresses:

  • 4.246.0.0/28
  • 4.246.0.16/28
  • 4.246.0.32/28
  • 4.246.0.48/28
  • 4.246.0.64/28
  • 4.246.0.80/28
  • 4.246.0.96/28
  • 4.246.0.112/28
  • 4.246.0.128/28
  • 4.246.0.144/28
  • 20.36.220.138
  • 20.36.222.77
  • 20.94.104.176/28
  • 20.94.104.240/28
  • 20.94.105.160/28
  • 20.94.105.208/28
  • 20.94.105.240/28
  • 20.94.105.32/28
  • 20.94.105.96/28
  • 20.94.106.16/28
  • 20.94.106.160/28
  • 20.94.106.176/28
  • 20.94.106.192/28

 

  • 20.94.106.208/28
  • 20.94.106.224/28
  • 20.94.106.240/28
  • 20.94.107.176/28
  • 20.94.107.96/28
  • 20.115.199.160/28
  • 20.115.199.176/28
  • 20.115.199.192/28
  • 20.115.199.208/28
  • 20.115.199.224/28
  • 20.115.199.240/28
  • 34.214.40.128
  • 35.162.126.140
  • 44.212.163.32
  • 52.1.219.111
  • 52.33.110.59
  • 52.36.18.134
  • 52.36.239.65
  • 52.37.6.204
  • 52.44.57.50
  • 52.73.234.82
  • 54.161.158.12
  • 100.25.241.25

Europe:

Core addresses:

  • 4.175.107.32/28
  • 4.175.108.80/28
  • 4.175.110.0/28
  • 4.175.111.0/28
  • 4.208.52.80/28
  • 4.208.52.96/28
  • 4.208.52.112/28
  • 4.208.52.160/28
  • 4.208.53.48/28
  • 4.208.53.64/28
  • 4.208.53.80/28
  • 4.208.53.96/28
  • 4.208.53.112/28
  • 4.208.53.128/28
  • 4.208.53.144/28
  • 4.208.53.160/28
  • 4.208.53.176/28
  • 4.208.53.192/28
  • 4.208.53.208/28
  • 4.208.53.224/28
  • 20.56.238.208/28
  • 20.56.239.128/28
  • 20.56.239.96/28
  • 20.61.137.144/28
  • 20.61.139.192/28
  • 20.61.140.128/28
  • 20.61.140.144/28

 

  • 20.61.140.224/28
  • 20.61.140.240/28
  • 20.61.140.48/28
  • 20.61.141.0/28
  • 51.105.155.160/28
  • 51.105.221.160/27
  • 51.105.221.164
  • 51.145.184.32/28
  • 51.145.186.160/28
  • 51.145.190.176/28
  • 51.145.190.192/28
  • 52.48.127.160/27 
  • 52.58.63.192/27
  • 52.236.2.144/28
  • 52.236.2.148
  • 108.141.8.0/28
  • 108.141.9.0/28
  • 108.141.9.112/28
  • 108.141.9.128/28
  • 108.141.9.144/28
  • 108.141.9.160/28
  • 108.141.9.176/28
  • 108.141.9.192/28
  • 108.141.9.208/28
  • 108.141.9.224/28
  • 108.141.9.240/28
  • 108.141.10.0/28

Webhook/Callback addresses:

  • 3.66.122.19
  • 3.77.229.112
  • 3.79.169.198
  • 4.207.3.96/28
  • 4.207.4.160/28
  • 4.208.68.176/28
  • 4.208.68.208/28
  • 4.208.68.224/28
  • 4.208.69.64/28
  • 4.208.75.176/28
  • 4.208.75.80/28
  • 4.208.79.192/28
  • 4.208.79.208/28
  • 4.245.45.176/28
  • 4.245.45.192/28
  • 4.245.45.208/28
  • 4.245.45.224/28
  • 4.245.45.240/28
  • 4.245.46.128/28
  • 4.245.85.80/28 

 

  • 20.23.101.224/28
  • 20.31.209.192/28
  • 20.31.209.240/28
  • 20.31.210.16/28
  • 20.31.210.48/28
  • 20.50.247.192/28
  • 20.50.247.208/28
  • 20.54.200.16/28
  • 20.54.201.96/28
  • 20.105.66.176/28
  • 20.166.106.144/28
  • 20.166.107.112/28
  • 20.166.107.240/28
  • 20.166.107.32/28
  • 34.249.199.85
  • 34.249.201.52
  • 34.249.204.33
  • 35.156.67.184
  • 35.157.85.76
  • 40.74.45.150
  • 40.127.244.64/28
  • 51.105.176.127
  • 52.215.99.205
  • 54.217.241.182
  • 54.246.37.130

 

Japan:

Core addresses:

  • 52.196.191.224/27

Webhook/Callback addresses:

  • 13.112.55.30
  • 13.112.107.255
  • 35.79.243.232
  • 52.198.1.183
  • 52.195.144.38

Australia:

Core addresses:

  • 52.65.255.192/27

Webhook/Callback addresses:

  • 3.24.56.173
  • 3.105.122.20
  • 13.55.59.190
  • 13.55.147.165
  • 13.55.162.104
  • 13.238.64.177

Singapore:

Core addresses:

  • 20.205.219.224/28
  • 20.205.220.112/28
  • 20.205.220.80/28
  • 20.205.220.96/28
  • 20.205.222.128/28
  • 20.205.223.224/28
  • 20.205.223.240/28
  • 20.247.200.240/28
  • 20.247.201.240/28
  • 20.247.202.48/28
  • 20.247.202.112/28
  • 20.247.202.128/28
  • 20.247.202.160/28
  • 20.247.202.240/28
  • 20.247.203.0/28
  • 20.247.203.32/28
  • 20.247.203.64/28

 

  • 20.247.203.112/28
  • 20.247.203.208/28
  • 20.247.203.224/28
  • 20.247.204.0/28
  • 20.247.204.112/28
  • 20.247.204.128/28
  • 20.247.204.144/28
  • 20.247.204.16/28
  • 20.247.204.176/28
  • 20.247.204.224/28
  • 20.247.204.240/28
  • 20.247.205.0/28
  • 20.247.205.64/28
  • 20.247.205.80/28
  • 20.247.205.96/28
  • 40.119.212.48/28
  • 40.119.212.52

Webhook/Callback addresses:

  • 4.144.129.160/28
  • 4.144.129.176/28
  • 4.144.130.192/28
  • 4.144.130.96/28
  • 4.144.131.0/28
  • 4.144.131.112/28
  • 4.144.131.144/28
  • 4.144.131.16/28
  • 4.144.131.32/28

 

  • 4.144.131.48/28
  • 4.144.131.64/28
  • 4.144.131.80/28
  • 4.144.131.96/28
  • 4.144.132.16/28
  • 4.144.132.80/28
  • 20.6.7.240/28
  • 20.197.104.9
  • 20.197.104.124

 

India:

Core addresses:

  • 13.126.23.0/27

Webhook/Callback addresses:

  • 3.6.197.59
  • 13.126.189.196
  • 13.200.122.115
  • 35.154.72.83
  • 35.154.248.184
Note:

If you have IP restrictions configured under the Security Settings tab in your Acrobat Sign account, we will allow logins only from those IPs. For more information, refer to this documentation.

IP ranges for outbound mail relays

If your organization explicitly lists IP addresses to control connection to your inbound mail servers, add the following IP addresses to your allowed list of IP ranges:

  • 40.65.170.152/30
  • 40.67.157.141/32
  • 40.67.154.24/32
  • 40.67.158.131/32
  • 51.105.221.64/30

  • 52.205.63.172/30
  • 52.41.255.236/30
  • 52.149.27.228/30
  • 52.208.255.252/30
  • 52.236.0.204/30
  • 52.59.244.0/30
  • 52.197.127.252/30
  • 52.65.63.248/30
  • 13.126.23.32/30

SSL/TLS Requirements

Transport Layer Security (TLS) is the most widely deployed security protocol used today for Web browsers and other applications that require data to be securely exchanged over a network. Connections to Acrobat Sign require the use of TLS 1.2 and support for at least one of the cipher suites below.  These requirements apply both to inbound traffic to Acrobat Sign servers (browsers, API) and outbound traffic from Acrobat Sign servers to customer servers (API callbacks used for retrieving agreement source documents, returning status, and webhooks).

For browsers: as long as you adhere to the OS/Browser requirements, you should have no browser-related issues. All these OS/browsers are fully compliant with our TLS requirements.

For applications using the Acrobat Sign API,  these frameworks support TLS 1.2:

  • Java: use Java 8 or later
  • .NET: use .NET 4.6 or later
  • OpenSSL: use OpenSSL 1.0.1 or later

For servers used to receive callbacks or webhook requests from Acrobat Sign:

  • Support TLS 1.2 and at least one of the cipher suites listed below
  • Have a valid TLS certificate, and include all intermediate certificates.

Customers who wish to test that their server is compliant can use a variety of free or commercial tools, including the Qualys SSLLabs Server Test, to ensure that their server accepts TLSv1.2, supports at least one of the cipher suites below, and has a valid certificate.

TLS Cipher Suites Supported:

IANA Name OpenSSL Name
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ECDHE-ECDSA-AES128-GCM-SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256  ECDHE-RSA-AES128-GCM-SHA256
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ECDHE-ECDSA-AES256-GCM-SHA384
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384  ECDHE-RSA-AES256-GCM-SHA384
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256  ECDHE-ECDSA-AES128-SHA256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256  ECDHE-RSA-AES128-SHA256
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ECDHE-ECDSA-AES256-SHA384
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384  ECDHE-RSA-AES256-SHA384

SSL Certificate Authority / Certificates

Download

Download

Sandbox:

Download

Download

Get help faster and easier

New user?