Time based authentication (Time Fencing)
Time-Based Authentication (also called Time Fencing) is a feature in ZTrust that lets administrators control when users are allowed to log in.
Admins can define a time window (e.g., 9:00 AM to 6:00 PM), and users will only be allowed to log in during that window. Outside of the allowed time, login will be blocked.
This feature can be configured in two ways:
Realm-Level configuration : Applies to all users in the entire application.
Group-Level configuration : Applies the only user who is belong to specific assigned group
Key Points:
Restrict login access to defined time ranges.
Support for both realm-wide and group-specific configurations.
Group-level configuration overrides realm-level settings if both are defined.
Flow Configuration:
Realm-Level Time Fencing :
Login to ZTrust Admin Console
Select the realm you want to configure
Navigate to authentication section.
Make a duplicate of browser flow.
Provide appropriate name.
Then click on + button and select add execution, select the feature like below
Whole configuration need to be like this
Click the configuration button next to the Time-Fencing step.
Set the following configuration values :
Login Start Time(e.g., 10:00)
Login End Time(e.g., 18:00)
Time Zone(e.g., Asia/Kolkata)
Use 24-hour time format for both start and end times (HH:mm)
Group-Level Time Fencing :
Navigate to the group section in the ZTrust admin console.
Create a new group or selected one.
Inside the selected group, go to the attributes section.
Add the Attributes as Login Start Time (login_start_time) and Login End Time (login_end_time).
Go to the Members tab and add users to this group,(“These users will now be subject to the time fencing rules defined for the group.”)
If a login attempt is made outside the permitted timeframe, the user will receive the following error:
Access Denied: Your login attempt is outside the allowed timeframe. Please try again during permitted hours.
Last updated