Risk Detection insights through Confidential SSO are currently available to a few selected organizations that have set up Confidential SSO.
If your organization has Omnix® Credential Protection and Confidential SSO set up, you can see real-time insights into Credential Risk Detection. You can access advanced security information about your organization.
When a vault user signs in to Dashlane via SSO Confidential, Dashlane enrolls their device and begins monitoring credential risk immediately. Monitoring covers verified professional domains only and continues whether the Dashlane extension is open or closed. This extends Risk Detection to vault users without requiring you to deploy the extension policy.
Credential Protection deployment
If you have Risk Detection insights turned on, you can now view credential risk across your vault users on verified professional domains. Your existing SSO configuration activated Risk Detection insights automatically.
Plan members sign in as usual and receive no notification. Nothing changes in their day-to-day use of Dashlane.
To extend coverage to employees without a vault, select Manage on the Credential Protection Visibility card, then start extension deployment.
Risk Detection insights
On the Insights Dashboard, you can view Risk Detection insights and monitor credential risks, from detection to user response, and continuously improve your organization's security.
Risk Detection insights through Confidential SSO provide extensive information on your plan members' risks and responses.
Tip: If you have any questions about the terms used in these insights, a glossary is available in the top-right corner of the Insights Dashboard.
Coverage insights
Coverage provides an overview of Dashlane browser extension coverage across your vault users, detailing the total number of browsers detected during the reporting period.
You'll see the number of Users logged in to vault: The number of browsers that had a user logged in to Dashlane at the time of reporting activity.
Learn more about Coverage insights
Risk Detection insights
Risk Detection monitors at-risk passwords with these key metrics:
- The number of users with at-risk passwords
- The number of website logins with an at-risk password
- Credential Risk Alerts insights:
- Total Credential Risk Alerts sent over time
- Total Credential Risk Alerts sent within the period chosen
- Number of users who started to change a password after a Credential Risk Alert
- Number of users who didn't start a password update after a Credential Risk Alert
Learn more about Risk Detection and user response insights
Learn more about Credential Risk Alerts insights
As you have set up SSO in your organization, we'll also let you know if employees are using weak or compromised passwords to access your organization's online accounts with SSO. This is a severe security risk because compromised credentials can be exploited by bad actors to gain unauthorized access to your organization.
Risk Detection visibility
After Risk Detection is turned on, you can see how many of your vault users are visible in the Risk Detection feature in the Users page of the Admin Console.
If admins haven't completed deploying the extension or the Credential Protection policy, you'll see this indication in the same section of the Users page. So the next step is always clear, we'll tell you to Review your deployment, for example, among other indications.
Admins can also see if each plan member is identified by Risk Detection, as there will be a Visible or Not Visible badge across all vault users in the Users page of the Admin Console.
To turn off Risk Detection for SSO-enrolled devices, go to Dashboard, select Manage, then SSO Confidential, and select Risk Detection. Turn off the toggle and complete the short survey.