The Airlock 2FA app supports the following behavior:
- ●When receiving a push notification, the user can either approve or decline the authentication request in the Airlock 2FA app.
- ●If the user declines the request, the app will ask Was it you that requested this action?
- ●If the user chooses No at this point, the Airlock 2FA app reports this answer as fraud reported by user.
Airlock IAM can lock a user account in case the Airlock 2FA app reports fraud reported by the user.
Configuration
- 1.Go to:
MAIN SETTINGS >> Authentication Settings >> Airlock 2FA Settings - 2.In the section Advanced Settings enable the Lock User On Fraud property.
Event notifications
When Lock User on Fraud is enabled, an event USER_LOCKED is generated and can be used by Event Subscribers.
Further information and links
- ●See 10.9. Event-based subscriber notification for more information about event producers and subscribers.
- ●See 17.2.4.2. Self-unlock flow example for more information on how to provide a public self-service flow.