Skip to Content
0
Jan 26, 2023 at 09:47 AM

Risk-Based Authentication and Conditional Authentication, which one takes precedence?

259 Views Last edit Jan 26, 2023 at 09:47 AM 2 rev

Hi,

If I configure risk based authentication & conditional authentication at the same time. Which one takes precedence?

For example,

I configure Conditional Authentication on an IP Address range to forward users within that range to a corporate IDP.

I configure Risk based Authentication to block users if they are not part of a certain IAS group.

Is the user blocked by IAS directly, first forwarded to the corporate IDP and then blocked by IAS after authenticating or not blocked by IAS after authenticating?