Guidelines for setting anonymous access in Confluence. restricting ip address

okay. makes sense. thanks nic.

another q - so, when an anonymus user hits the URL, does Confluence asks for userid and password. my guess is no but would that depend on any of the server/network configurations ?( im only Confluence Admin, not system admin in my company)

The base url lands them on the dashboard, which typically contains a login section.  You can change that, and have just the dashboard, or even a home page.    Of course, they might be following a link into something that is not the dashboard, but they won't be asked to log in directly.

The option to log in will lurk in the overall framework, with the users (anonymous) profile, and if they hit a page they can't see, a generic "you might be able to see this page if you logged in <link>" will be given to them.  Either way, then they get asked for username and password.

okay. but our username and passwords are synched to our SSO'ids which we use. so, if anonymous users are sent a link and they are asked to login, then would using the SSO consume the license? also, our Confluence permisions (on who can see/do what) flow from JIRA. 

im not sure on how this would work ?

im not clear nic. so, when we add public access to entire site and i share a link to a page with you, will confluence ask you to login ? if so, what would be the userid & password. 

i thought public access meant when i hit a URL link ( like atlassian's confluence), i can just get rerad-only access to the page and navigate around(depending on space level permissions)

is this not the case?

thanks!

I already explained what happens when a non-logged-in user arrives.

SSO twists it a little bit, but not that much.  All that happens with SSO is that a user will be logged in automatically IF they have already logged into another SSO enabled application AND they have a Confluence account.