← All posts June 06, 2026

Michigan LARA — when an SOS JSON API blocks your IP

michigan sos anti-bot

Michigan’s business registry is one of the most accessible in the country — until it isn’t. The state publishes structured data through an open interface, but enforces IP-level access controls that block most automated lookups. If you’re vetting vendors who claim they can verify Michigan entities at scale, ask them directly how they handle this bottleneck. The answer tells you whether they’re building real infrastructure or cutting corners.

The Michigan advantage that turns into friction

Michigan’s Department of Labor and Economic Opportunity (LARA) publishes entity records through a JSON API, not behind a captcha or a form. You can request a business by name or ID and get back structured data · no manual clicking, no OCR, no “sorry, too many requests” page refreshes. For underwriters working with Michigan-registered LLCs, corporations, or nonprofits, that’s a material advantage over states that bury records in slow, JavaScript-heavy portals.

But the API sits behind an IP allowlist. Requests from data-center IP ranges · the standard infrastructure used by most cloud platforms, API aggregators, and batch-processing operations · get blocked at the TLS handshake. A lookup from a standard AWS instance fails silently. A request from Google Cloud fails. The state doesn’t return a 403 error; the connection just drops.

Why this matters for your underwriting workflow

When you pull an entity record, you need two pieces: the official registered name and the registered agent address. If your verification vendor can’t reliably fetch Michigan records, they’re either not pulling agent data, or they’re pulling it stale. The legal notices that establish beneficial ownership, management structure, or control go to the agent. If the address is wrong or out of date, you might miss a disqualifying address (a UPS box instead of a real office, a foreclosed building) or fail to serve notice if you need to.

For underwriters in the equipment-finance or fleet-credit space, a Michigan LLC might hold the title to vehicles or be the registered carrier for a USDOT MC number. If your verification tool can’t reliably confirm the agent address or the officer list, you’re taking on registry risk. You’re trusting that the business data on the application matches the state record, but you haven’t actually verified it.

How real vendors work around it

Vendors who handle Michigan at scale use residential or semi-residential IP addresses · either through partnerships with ISPs, proxy pools, or infrastructure that appears to originate from real user networks rather than cloud data centers. This is operationally expensive. It requires either maintaining a network of physical proxies, paying for a residential proxy service, or building relationships with carriers who share IP space. It’s not fast, and it’s not cheap.

Some vendors skip this cost and fall back to either cached data (entity records pulled once a month and served stale) or manual lookup (an operator in a queue room clicking through the registry). Neither scales. Cached data means you might miss a recent dissolution, a change of agent, or a new officer filing. Manual lookup means your turnaround time depends on queue depth.

The third option is to simply exclude Michigan or downgrade the service. Some vendors will tell you they can verify Michigan, then deliver a report that shows “data not available” or a note that they “could not reach the state registry.” That’s honest, but it’s also a gap in your diligence.

The proxy question: cost vs. risk

A vendor who invests in real residential proxy infrastructure will charge you more per lookup or per report. That cost is real and will show up in your per-application fees. A vendor who uses residential proxies can pull fresh, live data from Michigan at the same speed and reliability as any other state. They get the same JSON response you’d get from your own computer if you looked it up manually.

A vendor who doesn’t mention Michigan’s IP blocking, or who can’t explain how they handle it, is either caching, guessing, or skipping. Ask them directly: “How do you handle IP blocking in Michigan’s LARA API?” If they dodge, that’s a signal.

When it matters most

Michigan’s proxy problem surfaces most in underwriting workflows where speed and freshness compete. A pre-funding verification, where you’re checking an entity two days before disbursement, needs current data. An initial underwriting verification, where you’re building the credit file, can tolerate data that’s a few days old if it’s clearly timestamped. A post-close audit, where you’re checking whether the borrower’s structure changed, absolutely needs current data.

If you’re doing any of these with Michigan entities and your vendor doesn’t address the IP blocking question, you’re taking on the risk yourself. You’ll need to cross-check against a secondary source or call the state’s registered agent line to confirm.

Bottom line

Michigan’s open JSON API could be a competitive advantage for verification vendors, but only if they invest in the infrastructure to actually use it. A vendor who glides over the IP blocking issue or can’t explain their approach to residential proxy access is probably not reliably pulling Michigan records at scale. Ask the direct question, get a concrete answer, and verify the answer in a test lookup yourself. The cost of finding out after signing is a missed change of agent, a stale officer list, or a dissolved entity that nobody caught.

Report a bug — straight to our team

See something broken or weird? Tell us. Your report submits directly to our team — no email client needed. Each report gets a unique ticket ID so we can track and respond.

v0.8-beta · 9970183