Use this rule to waive PingID authentication if the last successful authentication request occurred in the office and within a given time period, such as within the last 30 minutes.
This rule defines which authentication action to prompt the user with if the previous authentication request:
- Occurred within the defined period of time.
- Originates from the same accessing device that was used for the previous authentication request.
- Used an authentication method that is one of the allowed authentication methods included in this policy.
- The authenticating device's mobile location is the office.
If the previous request was made at an office location, you might want to define less strict authentication requirements. For example, a user signed on from a specific office within the last 30 minutes using their mobile device.
- If you are using PingOne DaVinci to orchestrate your PingID flows, this rule is not evaluated.
- Location services must be enabled on a user's devices for a location based policy to be applied to that device. For users with Android Q and later, the Allow All The Time option check box must be selected.
To use this rule at least one of the mobile app authentication method must be selected in the Allowed Authentication Method section, such as Swipe, Mobile App Biometrics, or One-time passcode. If this rule does not appear in the + Add Rule list, ensure at least one of these authentication methods check boxes is selected.