Jump to: how to configure zones

Redirector IP addresses (if activated for your domain) allow you to bypass OpenAthens authentication at known locations where the resources will allow access via IP authentication. This is very useful if you have to maintain separate links for onsite and offsite access to resources in your library catalogue or link resolver tool. Redirector IP addresses can only work with go link enabled resources.

Resources that support go links will have an additional address that can be used with the redirector. The redirector will decide whether to pass the user straight to the service provider, or pass the user to the OpenAthens authentication point where the user would be challenged for username and password if they were not already signed in.

A high level version of the user journey would go something like this:

User follows go link
Location recognised Location not recognised


Passed directly to resource

for IP authentication


OpenAthens authentication




If you would like to add this feature, please talk to your account manager.

Configuring zones

Preferences > Organisation

If enabled on your subscription, you will see a box for specifying redirector IP addresses in the resource access section of the organisation preference page.

Enter the IP addresses and ranges that are covered by IP authentication for your resources and save preferences. In most cases it will be sufficient to specify these ranges at the domain level, but additional ranges can be added per organisation to cater for local circumstances - for example where a local organisation has additional IP ranges, especially if they are connected with local resource subscriptions.  You should ensure that local administrators are aware of the impact of mistakes though; see below.

Anything to watch out for?

Locations covered by redirector IP addresses rely on a resource's IP authentication for access. You need to take care to match the zones you specify with what your resources will IP authenticate.