confirmRisk request
Send the
confirmRisk
request if the evaluateRisk
API determined a sign-in event was risky, and the site's user challenge response also failed. Send the request to: https://userservices-auth.vip.symantec.com/vipuserservices/AuthenticationService_1_10
confirmRisk
input fields lists details about the confirmRisk
input fields.Input Field | Required? | Type | Purpose |
|---|---|---|---|
requestId | Y | String | A unique identifier of the request for the enterprise application. The request ID accepts from 4 to 40 alphanumeric characters and underscores. This identifier may be useful for troubleshooting purposes. |
UserId | Y | String | Unique ID for the user (for example, the user email address, the user's logon name, or a unique ID that maps to user's logon name). The user ID accepts 1 to 128 international characters. The user ID is not case-sensitive in look-up operations. |
EventId | Y | String | The ID of the current event generated by IA. |
VerifyMethod | N | String | Method that is used to challenge a risky sign-in event, from 1 to 64 characters. |
IAAuthData | N | String | "Fingerprint" of the device, collected from browser. Sending an empty IAAuthData field does not return an error. |
KeyValuePair | N | List | List of key and value strings. |