Skip to main content

Adaptive Authentication API endpoints

Introduction

This guide explains how to configure the SecureAuth IdP Adaptive Authentication API endpoints for Adaptive Authentication workflows which analyze end-user login activity and effectively mitigate attacks from unauthorized users attempting to gain access to protected resources.

What's new in SecureAuth IdP version 9.3

POST endpoints

The two Adaptive Authentication API endpoints are /adaptauth and /accesshistory which use the POST method.

/adaptauth

This endpoint uses the POST method to enable SecureAuth IdP Adaptive Authentication to analyze an end-user's profile, group, IP address, country, geo-velocity, and any risks detected by threat intelligence data.

HTTP Method

URI

Example

SecureAuth IdP version support

POST

/api/v1/adaptauth

https://secureauth.company.com/secureauth2/api/v1/adaptauth

v9.1+

/accesshistory

This endpoint uses the POST method to create an end-user access history for geo-velocity calculations. Once the end-user is authenticated, the information is posted to the endpoint, and a new entry is created and stored in the end-user profile. On the next login attempt, SecureAuth IdP uses the stored information to validate whether the distance traveled from the previous login to the current attempt is feasible.

HTTP Method

URI

Example

SecureAuth IdP version support

POST

/api/v1/accesshistory

https://secureauth.company.com/secureauth2/api/v1/accesshistory

v9.1+