Use this rule to determine which authentication action to prompt the user with, based on the risk score of the IP address of the user's accessing device.
PingID collects and analyzes IP address data from the user's accessing device and enables you to apply different authentication actions to IP addresses according to their risk scores. IP addresses are grouped into the following levels of risk:
- High: The IP address is considered high risk and might have recently been involved in numerous malicious activities, such as DDos attacks or spam activity.
- Medium: The IP address is considered medium risk and might have been involved in malicious activities, such as DDos attacks or spam activity.
- Low: The IP address is considered low risk.
You can define a different authentication for each risk group. Define more restrictive authentication for IP addresses in a higher risk group You can also define a whitelist of IP addresses that you want this rule to ignore.
The IP reputation rule is not applied if there is insufficient data to determine the IP address' risk score.