Use Location Filter in MFA Context

Watch

Save as PDF

Share this page

Feedback

HomeVancouver Platform securityAccess ManagementAuthenticationAdaptive authenticationFilter criteriaLocation FilterTutorial: Use Location Filter criteriaUse Location Filter in MFA Context

Table of Contents

Use Location Filter in MFA Context

Release version:
Vancouver
Yokohama
Xanadu
Washington DC
UpdatedAug 3, 2023
2 minutes to read

Vancouver
Platform Security

The Vancouver release is no longer supported. As such, the product documentation and release notes are provided for informational purposes only, and will not be updated.

Use the location filter criteria created in MFA Context.

Before you begin

Role required: admin

Plugin required: Zero Trust - Location Based Access (com.snc.zero_trust_location_access).

The following procedure describes on how to create a Location Filter with the countries that you want to configure MFA as a second factor for authentication to the users based on the location.

Procedure

Navigate to All > Adaptive Authentication > Auth Policy Context > MFA Context.
On the MFA Context page, select the Step-Up MFA Policy information icon and open the record.
On the Step-Up MFA Policy page, under the Policy Inputs tab, select New.
Add the Location Filter input and Submit.
For example, you want to display MFA for users logging in to the instance outside Australia.
On the Step-Up MFA Policy page, select the Policy Conditions tab and select New.
In the Conditions page, provide the label, conditions, and set it to true.
Select Submit.
On the Step-Up MFA Policy page, activate the MFA Policy if it’s Deactivated.
Select Update to update the configuration.

The users outside the configured country (Australia) selecting the instance link, specifying their credential; will be shown with the MFA screen to provide the second factor credentials to log in to the instance.