Set the Minimum Assurance Level for a Risk-Based Authentication Policy
The minimum assurance level determines the confidence threshold that each authentication attempt must meet for the user to avoid being challenged for identity confirmation. The setting is in the RBA policy for each security domain. Each time a user authenticates, the risk engine evaluates the device match and user behavior in real-time to produce an assurance level. The risk engine compares the user’s assurance level with the minimum assurance level in the RBA policy. If the user’s level is lower than the minimum, the user is prompted for identity confirmation.
Before you begin
Plan how the minimum assurance level is determined. For more information, see Minimum Assurance Level.
Procedure
In the Security Console, click Authentication > Policies > Risk-Based Authentication Policies > Manage Existing.
Click the policy that you want to configure, and select Edit.
In the Enablement and Assurance Settings section, select the Minimum Assurance Level that you require for successful authentication.
Note: Changing this setting may affect how often users are prompted to confirm their identity.
Click Save.
Related Concepts
Related Articles
Configure Assurance Levels Number of Views Specify the Default RADIUS Profile Number of Views Assurance Levels Number of Views Simplify Identity Access and Assurance Decisions on AWS with RSA SecurID and Session Tags Number of Views Evaluating Assurance Levels and Primary Authentication Status to Return Authentication Methods Number of Views
Trending Articles
Passwordless Authentication in Windows MFA Agent for Active Directory – Quick Setup Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Authentication Manager Upgrade Process RSA Authentication Manager 8.7 SP2 Setup and Configuration Guide An example of SSO using SAML and ADFS with RSA Identity Management and Governance 6.9.x
