Overview
This article provides guidance on the options to monitor the usage of Bot Protection features.
Applies To
- Bot Detection
- Monitoring
Solution
To determine if the Bot Detection feature is enabled, check the Auth0 Dashboard under Security > Security Center under the Threat Monitoring tab or by filling in the details in the following URL:
https://manage.auth0.com/dashboard/[REGION]/[TENANT-NAME]/security/center/bot-detection
- Replace [REGION] with the Auth0 Region name and [TENANT-NAME] with the Auth0 Tenant Name.
To find information about the feature in the tenant logs, look for the “pla” (pre-login assessment) log type. See Log Event Type Codes for more information.
- The presence of the “pla” Pre-login assessment event does not necessarily mean that the user was challenged with CAPTCHA.
- The event details include information on the transaction context, and the requiresVerification boolean shows if Captcha/Challenge was enforced.
- To determine whether or not the CAPTCHA was completed for individual login transactions, check the requiredCaptcha property nested inside the details.prompts array for successful login events (type:s).
NOTE: The search function in tenant logs is not conducive to this level of granularity. It is recommended to either export the tenant logs using the management API or to set up a log stream to automate the export process and then perform the sort for “requiredCaptcha”: true on the exported data.