Skip to main content

πŸ“Š Dashboard

The GuardianKey Auth Security Web Dashboard is the central interface for administration and monitoring. It allows administrators to view authentication events, configure risk-based response policies, manage notifications, and analyze user behavior in real time.

🏒 Organization​

The dashboard supports multiple Organizations, each representing a logically isolated instance, such as a company or business unit. Each organization has:

  • Complete isolation of data and configurations
  • Administrators with specific permissions
  • Internal user groupings called authgroups

πŸ‘₯ AuthGroups (Authentication Groups)​

Authgroups are logical groups within an organization, used to:

  • Group related users or systems
  • Apply risk and notification policies granularly
  • Share or isolate behavioral profiles between different applications

Each authgroup has:

  • Its own risk policy
  • Specific notification rules
  • Independent event history and profile

Example: Separate authgroups for the financial system and the support system, each with different rules and responses.

πŸ›‘οΈ Risk Policies​

Risk policies are applied per authgroup and define actions to be taken based on the risk score calculated by GuardianKey.

For each risk range, you can configure:

  • βœ… ACCEPT – access granted
  • βœ‰οΈ NOTIFY – notification via email or webhook
  • ⚠️ HARD NOTIFY – notification with user confirmation request
  • ❌ BLOCK – access denied, even with valid credentials

These actions are configurable and can be edited at any time in the dashboard.

πŸ”” Notifications​

Each authgroup can have its own notification rules. There are two main delivery methods:

Email (SMTP)

  • Can be sent to:
    • Only the user
    • User and administrator
    • Only the administrator
  • The email contains a link to a confirmation page, where the user can indicate if the access was legitimate

Webhook (HTTP/REST)

  • Enables integration with third-party systems (SIEM, ticketing tools, dashboards, etc.)
  • Sends event data and risk score in real time

πŸ“ˆ Dashboards and Event Visualization​

The dashboard provides interactive graphical dashboards with:

  • Geographic map of accesses
  • Risk distribution by group, system, or user
  • Accumulated charts by period
  • Detailed event listing with filters by:
    • IP, score, status, threat type, location, browser/OS

You can also view:

  • User event timelines
  • Behavioral statistics by authgroup
  • Access analysis by ASN, location, browser, and device