Configure Behavior Detection
Behavior Detection requires that you add one of the behavior types to sign-on policies. Next, add the behavior to a sign-on policy rule. Optionally, you can manage Behavior Detection or reset end-user behavior.
Behavior Detection maintains a history of recent session contexts, and defines a new sign-in event as one with a different IP, device, location, or velocity than previous events. The number of previous events varies by type.
|
Task |
Description |
|---|---|
| Add a location behavior |
Configure Behavior Detection by adding a location behavior, which is used to define policies based on changes in the end user's geographical location at sign-in time. |
| Add IP behavior | Configure Behavior Detection by adding an IP behavior that is used to evaluate sign-on policies. |
| Add device behavior |
Configure Behavior Detection by adding a device behavior, which is used to define policies based on changes in the end user's device at sign-in time. |
| Add a velocity behavior |
Configure Behavior Detection by adding a velocity behavior, which is used to define policies based on changes in the end user's geographical location using two subsequent sign-in attempts. |
| Add an ASN behavior | Configure Behavior Detection by adding an ASN behavior that evaluates changes in an end user's network ownership. |
|
Add a behavior to an existing sign-on policy rule. The conditions of the rule in addition to the behaviors must be met to trigger the rule. |
|
| Manage behavior settings | Manage behavior settings using the active, inactive, edit, and delete actions. |
| Reset the user behavior profile | Reset the end user's behavior profile. |