For the best web experience, please use IE11+, Chrome, Firefox, or Safari
OneLogin Logo

Authentication that dynamically adapts to risky user behavior

Evolving security threats means authentication methods need to adapt. Risk-based authentication builds a profile of past login behavior, and adjusts security measures to verify user identity in real-time.
Authentication that dynamically adapts to risky user behavior

49%

of breaches stem from stolen credentials

86%

of basic web application attacks involve stolen credentials

50%

of records breached are due to unauthorized access

How risk based authentication protects user accounts and secures application access

Powered by machine learning, OneLogin’s SmartFactor Authentication analyzes a broad range of inputs, such as location, device and user behavior to calculate a risk score and determine the most appropriate security action to take for each login attempt. Depending on the detected level of risk, SmartFactor Authentication adjusts the authentication factors needed to log in.
How risk based authentication protects user accounts and secures application access

Features

Proprietary risk engine

Evaluate typical access patterns to dynamically enforce authentication based on risk-scoring.

Configurable authentication

Define user-based authentication flows to block attacks, minimize lockouts and enable smooth logins.

Integrates with existing MFA

Layer SmartFactor with a number of third-party authentication providers.

Passwordless authentication

Centrally manage passwordless methods like biometrics, PassKeys and push notifications.

Frictionless user experience

Balance security with usability by dynamically adjusting login requirements based on risk level.

Policy-driven access denial

Create user or app policies that deny access under certain circumstances.

Richards Building Supply

OneLogin SmartFactor Authentication allows us to make our IT infrastructure secure and resilient with a tool that seems small but has a broad reach. By reviewing the logs to see users’ threat levels and risk scores, I can investigate likely threats and address them immediately.

Matthew Verniere IT Project Manager and Architect Read Case Study

Noon

AI-powered, context-aware multi-factor authentication was a game changer because our users just respond to a push notification on their smartphone during the login process. Since OneLogin can take into account factors such as the user’s location and IP address, the authentication process is comprehensive.

Peter Gesper Senior Vice President of IT Read Case Study

Qonto

Imagine you want to gather access logs from all your internal applications, parse them and define suspicious behavior...that’s impossible. But with OneLogin, it’s just a click away.

Ayoub El Assal Head of Security Read Case Study
 

Frequently Asked Questions

Secure all your apps, users, and devices