cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

Risk-Based Authentication and Conditional Authentication, which one takes precedence?

Go to solution
ddeconin
Product and Topic Expert
Product and Topic Expert

on ‎2023 Jan 26 9:47 AM

0 Kudos
1,235

Hi,

If I configure risk based authentication & conditional authentication at the same time. Which one takes precedence?

For example,

I configure Conditional Authentication on an IP Address range to forward users within that range to a corporate IDP.

I configure Risk based Authentication to block users if they are not part of a certain IAS group.

Is the user blocked by IAS directly, first forwarded to the corporate IDP and then blocked by IAS after authenticating or not blocked by IAS after authenticating?

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (1)

Accepted Solutions (1)

Colt
Active Contributor
‎2023 Jan 30 10:04 AM
0 Kudos

Hi,

Conditional Auth jump in first. After coming back from corp. IdP depending on the config (ID federation enabled and RBA configured) now the rules are evaluated and in case the user is blocked via group assignment, this rule will apply.

Show replies
Show replies

Answers (0)

Ask a Question