Exempt an IP Zone from Okta ThreatInsight

If you'd like to exclude one or more IP addresses from ThreatInsight evaluation, you may exempt the IP Zone they belong to in order to prevent Okta from identifying them as high risk.

Before you begin

Configure the settings for Okta ThreatInsight. See Configure Okta ThreatInsight

Start this task

To exclude an existing network zone from Okta ThreatInsight threat detection:

  1. In the Admin Console, go to Security > General.

  2. Select one of the following Okta ThreatInsight options:
    • Log authentication attempts from malicious IPs
    • Log and block authentication attempts from malicious IPs
  3. In the Exempt Zones field, enter and select the names of the network zones that contain the IP addresses you trust and want Okta ThreatInsight to allow. For information about configuring network zones for IP addresses, see Network zones.
  4. Click Save.