New Risk-Based Access Control
Cloudflare has added User Risk Score support to its Access policy system, allowing administrators to make access decisions based on real-time risk assessment of user behavior and authentication patterns.
How It Works
The new selector enables policies that respond to detected risk signals, including:
- Impossible travel detection
- High DLP policy matches
- Other behavior patterns flagged by Cloudflare's risk scoring system
Configuration and Use
Administrators can now create Access policies that dynamically adjust based on user risk scores, providing an additional layer of conditional access control beyond traditional attribute-based policies. This allows for more sophisticated zero-trust security postures that adapt to detected anomalies in user behavior.
Getting Started
For implementation details and configuration guidance, refer to the Use risk scores in Access policies documentation in the Cloudflare One developer portal.