Configure Behavior Detection

Behavior Detection requires that you add one of the behavior types to sign-on policies. Next, add the behavior to a sign-on policy rule. Optionally, you can manage Behavior Detection or reset end-user behavior.

Behavior Detection maintains a history of recent session contexts, and defines a new sign-in event as one with a different IP, device, location, or velocity than previous events. The number of previous events varies by type.

Task

Description

Add a location behavior

Configure Behavior Detection by adding a location behavior, which is used to define policies based on changes in the end user's geographical location at sign-in time.

Add IP behavior Configure Behavior Detection by adding an IP behavior that is used to evaluate sign-on policies.
Add device behavior

Configure Behavior Detection by adding a device behavior, which is used to define policies based on changes in the end user's device at sign-in time.

Add a velocity behavior

Configure Behavior Detection by adding a velocity behavior, which is used to define policies based on changes in the end user's geographical location using two subsequent sign-in attempts.

Add a behavior to a sign-on policy rule

Add a behavior to an existing sign-on policy rule. The conditions of the rule in addition to the behaviors must be met to trigger the rule.

Manage behavior settings Manage behavior settings using the active, inactive, edit, and delete actions.
Reset the user behavior profile Reset the end user's behavior profile.