Risk Scoring and Behavior Detection
Risk Scoring and Behavior Detection use data-driven models to evaluate sign-in requests. You can configure Okta sign-on policy rules to create custom responses to changes in risk level or user behavior. For example, you can require a user to authenticate themselves if they sign in from a new location, or use a new device.
The results of these evaluations appear in the System Log in the LogOnlySecurityData field in DebugContext.
You can also configure Okta sign-on policy rules to specify which risk level or behavior events you want reports for. In addition, you can view risk and behavior evaluations for all sign-in requests.