For example, if a user signs on from New York, USA at 12:00 p.m. and then attempts to sign on from London, UK two hours later, a geovelocity anomaly is detected and a rule action, such as Deny, is applied.

You can create a whitelist of IP addresses that you want this rule to ignore.

  1. From within the relevant policy, click + Add Rule and from the list, select Geovelocity Anomaly.
    The Geovelocity Anomaly rule wizard opens.
    A screen capture of the Geovelocity Anomaly rule wizard.
  2. From the Action list, select the authentication action that you want to apply in the event of a geovelocity anomaly.
    • Deny (default): Deny access.
    • Authenticate: Allow the user to authenticate using any of the authentication methods allowed at the policy level.
    • Allowed Methods: Click Allowed Methods to reveal a list of authentication methods allowed by this policy, and then select the check box of each authentication method that you want to allow for this rule. See Rule authentication actions for description per authentication type.
  3. in the Whitelist field, specify one or more IP address ranges that you want the rule to ignore.
    Note:

    Enter each IP address range in the format XX.XX.XX.XX/XX. Separate each IP address range with a comma.

  4. Click Save.
  5. In the Policy list, click and drag the new policy and place it in the order in which you want it to be considered. Click Save Order.
To ensure the policy is applied to your organization, go to PingID > Configuration and ensure Enforce Policy is set to Enabled.