When you edit a risk-based authentication (RBA) policy, you can modify all RBA settings, including the minimum assurance level that is required for logon, and the identity confirmation methods that are allowed when an authentication attempt does not meet the minimum assurance level.
In the Security Console, click Authentication > Policies > Risk-Based Authentication Policies > Manage Existing.
Click the policy that you want to edit, and select Edit.
Make any necessary changes to the policy.
If you have not saved your changes, you can click Reset to restore the risk-based authentication policy to its original state.