Configure Behavior Detection
Use the Behavior Detection tab to configure location, device, IP address, or velocity behavior settings. Behavior configurations are used in sign-in policy rules. Edit, delete, and reset actions are available to modify existing behavior settings.
Behavior Detection maintains a history of recent session contexts, and defines a new sign-in event as one with a different IP, device, location, or velocity than previous events. The number of previous events varies by type.
|
Task |
Description |
|---|---|
| Add a location behavior |
Configure Behavior Detection by adding a location behavior, which is used to define policies based on changes in the end user's geographical location at sign-in time. |
| Add IP behavior | Configure Behavior Detection by adding an IP behavior that is used to evaluate sign-on policies. |
| Add device behavior |
Configure Behavior Detection by adding a device behavior, which is used to define policies based on changes in the end user's device at sign-in time. |
| Add a velocity behavior |
Configure Behavior Detection by adding a velocity behavior, which is used to define policies based on changes in the end user's geographical location using two subsequent sign-in attempts. |
|
App sign-in policies enforce end-user authentication in the context of the requested application. Admins can configure behavior conditions in app sign-in policies using Expression Language. |
|
|
Global Session Policies supply sign-in context necessary for the user to advance to the next authentication step once Oktaidentifies them. |
|
| Manage behavior settings | Manage behavior settings using the active, inactive, edit, and delete actions. |
| Reset the user behavior profile | Reset the end user's behavior profile. |