Release 2.27 - Smarter Restrictions: fine-tune login security without slowing people down

We have made it easier to decide how often employees must re-authenticate, and to adapt those rules to context. 

What is new

• General Login Frequency sets the base interval for your organisation 
• Conditional Login Frequency adjusts that interval when specific restrictions apply, such as IP, day, or time 
• Access Policies let you roll out consistent rules across users, groups, and departments 

Example

• General login frequency: require authentication every 10 minutes 
• Conditional login frequency: require authentication once per day for trusted IP ranges 

Benefits

• Stronger security in untrusted locations 
• Less friction in trusted networks 
• Granular control that scales across teams

For organizations that want consistent rules across users and departments, you can manage these restrictions through an Access Policy,  ensuring uniform and compliant security settings throughout the organization. 

Compliance and control
These controls align with NIS2 expectations for access management, continuous authentication, and encryption, helping you demonstrate policy enforcement across cloud and desktop services. 

 
Admins can also combine login frequency with existing IP and time based restrictions for precise access governance.