The Cloud Authentication Service allows you to use specific attributes in access policy conditional expressions. These expressions are used to determine authentication requirements and who is allowed or denied access to resources. The following table shows which attributes are available with each edition.
Access Policy Attributes
Identity source attributes (used in rule sets to select target population for policy)
IP address (conditional attribute)
Additional conditional attributes:
Premium Edition attributes include all attributes listed above and the following conditional attributes:
High-Risk User List
Note:If your deployment is downgraded from Premium Edition to Enterprise Edition, you must examine your access policies and edit them if necessary to ensure that they comply with the Enterprise Edition license. Policies that are not up-to-date can result in authentication failures.