Rule authentication actions
The list of authentication actions that you can choose to enforce within a policy rule is determined by the authentication methods allowed at the policy level.
Authentication Action | Description | |||
---|---|---|---|---|
Approve |
Approves access without requiring PingID authentication.
|
|||
Authenticate |
Allows a user to authenticate using any of the authentication methods available to the user and allowed at the policy level.
|
|||
Authenticator app |
Allows a user to authenticate using an authenticator app only, such as Google authenticator. |
|||
Deny |
Denies access. |
|||
Desktop |
Allows a user to authenticate using a desktop app only. |
|||
Allows a user to authenticate using an email app only. |
||||
FIDO2 Biometrics |
Allows a user to authenticate using device built in biometrics on a FIDO2 biometrics device. This option is only available for web-based policies. |
|||
Mobile App Biometrics |
Allows a user to authenticate with the PingID mobile app using biometrics authentication only. This action works according to the biometrics configuration defined in the admin portal. Swipe authentication is also permitted if the following conditions are met:
|
|||
DEPRECATED: Fingerprint (with fallback) |
|
|||
Number matching |
Authenticate by number matching is permitted.
|
|||
Oath Token |
Allows a user to authenticate using an OATH token only. |
|||
One-time passcode |
One-time passcode (required) |
Allows a user to authenticate using a OTP obtained from the PingID mobile app only. |
||
DEPRECATED: One-time passcode (with fallback) |
|
|||
SMS |
Allows a user to authenticate using a passcode obtained by SMS only. |
|||
Security Key |
Allows a user to authenticate using a security key only. This option is only available for web-based policies. |
|||
Swipe |
Swipe (required) |
Allows a user to authenticate using the PingID mobile app swipe action only.
|
||
DEPRECATED: Swipe (with fallback) |
|
|||
Voice |
Allows a user to authenticate using a passcode obtained by a voice message only. |
|||
YubiKey |
Allows a user to authenticate using a YubiKey only. |