22.1 Assessing Risks Based on the IP Address

Your organization wants to allow its employees to access the Payroll portal only from the corporate network.

For this requirement, you need to perform the following tasks:

  1. Configure a risk policy with IP Address Rule.

  2. Configure a chain for the low risk level.

  3. Configure or modify the event for the Payroll portal and map the risk policy and the chain to this event.

    NOTE:If you do not configure a chain for the high risk level, no chain is prompted to the user for authentication in the high-risk scenarios. The access is denied in such a case.

Configure a risk policy

  1. Click Risk Settings > Create a Risk Policy icon.

  2. Specify the following details:

    • Policy Name: Specify the name. For example, Risk-Service-Internal-Network.

    • Description: Specify the purpose of this policy.

  3. Configure IP Address Rule as follows:

    1. Click Add Rule.

    2. Specify the rule name and the description.

    3. Select IP Address Rule from Choose a Rule Type.

    4. Select Is from Allow if IP address in the list.

    5. Select IP address range in Manually enter the Data source.

    6. Specify the range of the IP address.

      For example, 10.0.0.0 to 10.255.255.255

    7. Click Save.

  4. Set the green slider to 0 to indicate the low risk level.

  5. Click Save.

Configure a chain

  1. Click Chains > Add.

  2. Specify a name for the chain in Name. For example, LowRisk.

  3. Set Is enabled to ON.

  4. Select methods that you want to add to the chain in Methods. For example, Password.

  5. Specify the groups that will use the authentication chain in Roles and Groups.

  6. Expand Risk Settings by clicking +.

  7. In Minimum Risk Level, select Low.

  8. Click Save.

For more information about chains, see Section 10.0, Creating a Chain.

Configure or modify the event for the Payroll portal

  1. To create a new event:

    1. Click Events > Add.

    2. Specify a name for the event.

    3. Set Is enabled to ON.

    4. Select the type in Event type. For example, Generic.

    5. Select the LowRisk chain that you created in Configure a chain.

    6. In Risk Policy, select the Risk-Service-Internal-Network policy.

    7. Click Save.

  2. To modify an existing event:

    1. Click the edit icon against the event that you want to edit.

    2. Select the LowRisk chain that you created in Configure a chain.

    3. In Risk Policy, select the Risk-Service-Internal-Network policy.

For more information about creating and editing an event, see Configuring Events.

After you implement this risk policy, the following are possible scenarios:

Scenario

Risk Level

Result

An employee accesses the Payroll portal in the corporate network.

Low

The user is required to authenticate using the LowRisk chain.

An employee accesses the Payroll outside the corporate network. IP Address Rule is failed.

High

No chain is configured for the high risk. So, access is denied.