diff --git a/group_vars/stage_prodnso/keycloak.yml b/group_vars/stage_prodnso/keycloak.yml
index 96b2750..982ddb8 100644
--- a/group_vars/stage_prodnso/keycloak.yml
+++ b/group_vars/stage_prodnso/keycloak.yml
@@ -1,4 +1,4 @@
-# Used to authorize access to keycloak via tcp/443 on the hcloud firewall
+# Used to authorize access to keaycloak via tcp/443 on the hcloud firewall
 keycloak_https_whitelisted_ips:
   - 0.0.0.0/0 # Public access to keycloak
 
@@ -13,7 +13,8 @@ keycloak_ip_whitelist:
   - 167.235.25.0/32 # DEV-987 - prodwork01-kube-node-07
 
 keycloak_customer_ips_mobene:
-  - 92.42.192.9/32 # MOB-486 - mobene
+  - 92.42.192.128/25 # MOB-486 - mobene
+  - 92.42.192.9/32 # HOTIFX-231013 - mobene
 
 # Use these Realm ACLs to create custom Traefik labels for Keycloak to restrict admin access per realm
 # Both variables are mandatory!