IP Blacklisting Value-Added Module Deployment Guide

Download the files from the email you received from SecureAuth

Drag the files and drop them into the following folders:

1. Realm bin folder: SecureAuth.AnalyzeEngine.dll.

2. AnalyzeApi bin folder (located in the SecureAuth master folder):

   SecureAuth.AnalyzeEngine.BLL.dll, SecureAuth.AnalyzeEngine.Model.dll.

Access the Admin panel and go to the Adaptive Authentication tab.

Slide the User Risk toggle switch to Enabled.

Click the Add User Risk Score Provider button, as shown in the figure below.

Complete the form information (as seen in the following image). Set the desired Risk Ranges, Risk Score Provider Name, Base URL, endpoint URL, Authentication Method, Username, and Password.

1. In your endpoint, specify {ip} in the Get Profile Relative URL text field wherever you want to send the user’s IP address.

   For example, /api/RiskService/{ip}.

   An example call should be similar to: baseurl/api/RiskService/xxx.xxx.xxx.xxx.

2. In the Risk Score JSON Path, you must specify the path to get the score from your service response.

   For example, if your service response is {“score”:55}, then the path to get the value would be {score}.

   Note

   If there’s an authentication method other than “Basic”, user must provide valid credentials in the username/password fields.

Finally, specify every action for the score received, as demonstrated in the image below.

Copy the SecureAuth.AnalyzeEngine.dll into the bin folder of the desired realm and into the shared folder within realms called AnalyzeApi.

In that same shared folder, copy the rest of the dlls, SecureAuth.AnalyzeEngine.BLL.dll, and SecureAuth.AnalyzeEngine.Model.dll.

In the Admin Panel under the Adaptive Authentication tab, add a new Risk Provider, following the steps inside this guide to set up the service that will test the user IP and generate a score to be used to direct the desired flow of authentication.

Remember to enable User Risk and also the Provider, as shown in the previous images.