Hi,
We are interested in implementing the CAS Risked Based Authentication
component. I’m not clear on what options are available in CAS to deal with
a “risky” login that has been detected by RBA.
In the event of a risky login:
1.
We would like to temporarily block them from proceeding to the requested
URL.
2.
We would like to email a verification code to the user that they would
enter on the CAS front end and it would be validated against what was
emailed.
1.
If the verification codes match, then we would allow the user to
complete authentication and proceed to the requested URL.
Where in the CAS project does it provide a resolution to deal with “risky”
logins so that we can introduce our code to implement a verification code
check?
Thank you,
Doug
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/17353e64-e940-4ded-930c-cd7251eaccf5%40apereo.org.
