Edit the global policy

The global policy lets you enforce compliance with security rules at the organization level.

All configured integrations with group and user accounts are impacted by the global policy. This is a built-in rule that is assigned to your organization during onboarding. You can't remove it. You can, however, edit its subpolicies that you want to manage for the entire company. For example, you can update the required lockout rules or device posture requirements.

Follow these steps to edit the default global policy settings.

How to

  1. In the Enterprise Center navigation menu, select Multi-factor Authentication > Policies.

  2. Navigate to the global policy and click Global to display its settings.

    The global policy configuration page displays.

  3. In the sidebar menu, select the subpolicies that you want to edit.

  4. In New User, accept the default Enroll policy or select one of the available rules.
    With this policy, you can define the way you onboard new users in ​Akamai MFA​. See Configure policy for a new and existing user to learn more.

  5. In Existing User, accept the default Enforce policy or select one of the available rules.
    With this policy, you can define the way that current users can access the protected applications. See Configure policy for a new and existing user to learn more.

  6. In Smart Device, enable requirements that the devices registered in ​Akamai MFA​ must meet before they can be used by the users to authenticate. See Configure your device posture policy to learn more.

  7. In Authentication Factors, enable all secondary authentication methods that you want to allow for the global policy settings. To learn more, see Allowed authentication methods.

  8. In Lockout, accept the default number of Max Attempts and the Lockout Duration, or provide other values. See Configure your lockout policy to learn more.

  9. In Browser, specify allowed or denied browser versions on devices that are used to access the protected applications. See Configure your device posture policy to learn more.

  10. In OS, specify allowed or denied OS versions that are running on devices used to access the protected applications and receive push notifications. See Configure your device posture policy to learn more.

  11. Click Save and Deploy.
    You've just updated your global policy. All the configured integrations and user and group accounts will be impacted by those changes


Did this page help you?