User access does not show any Matched Rule in Risk Authentication reports
Article ID: 232802
Updated On:
Products
Issue/Introduction
I found a scenario that the user was allowed to access without matching any rules defined. Could you tell me in what situation that could happen. Here is the screenshot from the report. Please see the second case.
Environment
Release : 9.1
Component : RiskMinder(Arcot RiskFort)
Resolution
Risk Authentication server does the Risk evaluation of the rules listed in Order in Admin console. When none of the rules which gives INCREASEAUTH/DENY triggered then we get the ALLOW Advise and that indicates the transaction is not Risky. If there are rules configured which gives ALLOW advise and if that Rule triggers then only you will see that the Matched Rule section has the name of the rule listed else you will see a BLANK and which indicates that none of the Risky rules triggered and Advise from Risk server is ALLOW.
Feedback
