Risk Policy Template: Monitor Authentications
Beta Feature
This article is subject to change as the feature develops and we make improvements.
Check authentication attempts within a certain timeframe and block authentication if any failed attempts are found. The policy will block and return as a failure in the following scenarios:
- HYPR Mobile App authentication is canceled
- Authenticator used for HYPR Mobile App authentication fails to verify the user
- Incorrect PIN is provided for HYPR Mobile App authentication (if configured)
- FIDO2 Passkeys fails to initiate an assertion request (Note: Cancelling a FIDO2 Passkey authentication attempt will not trigger a failure)
The following are the initial configuration options available for this template:
| Field | Description |
|---|---|
| Authentication Time Period (Minutes) | How far back (in minutes) the policy should check for authentication attempts starting from the time of evaluation. Default is 5. |
| Block User On Failed Authentication Attempt | If enabled, authentication is blocked is the user has failed policy evaluation. Default is true. |