Disable a User for Risk-Based Authentication

Disabling a user for risk-based authentication (RBA) prevents the user from accessing RBA-protected resources. The system retains the user's RBA-related data, including the user's authentication history and device history. (Devices remain in the user device history according to the device administration settings in the RBA policy.)

Note: If the RBA policy allows users to become automatically enabled for RBA, then the user can become re-enabled for RBA. For more information, see Methods for Enabling Users for Risk-Based Authentication.


  1. In the Security Console, click Authentication > Risk-Based Authentication > Manage Enabled Users.

  2. Use the search fields to find the user that you want to disable for RBA.

  3. Click the user that you want to disable for RBA, and select Risk-Based Authentication.

  4. Under RBA Settings, deselect Enable user for RBA.

  5. Click Save.