Document
Library

User Guide

Overview
What's new
Subscribing to FortiWeb Cloud
- Subscribing on AWS Marketplace
- Subscribing on Azure Marketplace
- Subscribing on Google Cloud Marketplace
- Subscribing on OCI Marketplace
- Purchasing contracts
- Two-Factor Authentication
- FortiFlex
FortiCloud Organizational Units
Getting started
- Onboarding applications
- Example: Changing DNS records on AWS Route 53
- Changing IP addresses of origin servers
- Restricting direct traffic & allowing FortiWeb Cloud IP addresses
- How does FortiWeb Cloud choose regions?
- CDN
- Understanding block mode and action
Global settings
- Application management
- Templates
- Audit logs
- Admin management
  - Migrating to IAM user
- Role management
- Contracts
- Cloud Connectors
- Custom block pages
- Settings
- Reports
Threat Analytics
- Threat Analytics
- Attack logs
- WAF Gateway
Log Settings
Configuring network
- Origin Servers
Endpoints
- Supported cipher suites & protocol versions
WAF modules
- How to add or remove a module
- Security Rules
- Client Security
- Access Rules
- Bot Mitigation
- DDoS prevention
- Advanced Applications
  - Custom Rule
  - WebSocket Security
- API Protection
- Application Delivery
- Global Trustlist
Vulnerability Scan
FortiView
Using FortiWeb Cloud with DevOps tools
- Configuring FortiWeb Cloud with Terraform
- Configuring FortiWeb Cloud with Ansible
- Configuring FortiWeb Cloud with Jenkins
Use cases
- Using FortiWeb Cloud behind a Content Distribution Service
- Network settings for applications serving different content over HTTP and HTTPS
- FortiWeb Cloud and Splunk
- Fortinet Security Fabric
- Managing External IdP roles in FortiCloud IAM
- Frequently used regular expressions
Best practices
- Using Dashboard to monitor important notices
- Utilizing FortiView to reduce false positives
- Setting up a secure environment
- How to block the ongoing DDoS attack
Sequence of scans
Supported cipher suites & protocol versions
Maximum configuration values
FAQs
- Onboarding applications
- Network
- Security
- Logs
- Subscriptions and Contracts
- Accounts
- Miscellaneous
Contacting customer service

Home FortiWeb Cloud User Guide

Biometrics Based Detection

Copy Link

Copy Doc ID 2ffc9903-bcb4-11e9-8977-00505692583a:598985

Download PDF

Biometrics Based Detection

By checking the client events such as mouse movement, keyboard, screen touch, and scroll, etc in specified period, FortiWeb Cloud judges whether the request comes from a human or from a bot.

Go to BOT MITIGATION > Biometrics Based Detection.
You must have already enabled this module in Add Modules. See How to add or remove a module.

Configure these settings.

Monitor Client Events

Select at least one client event according to your need.

Mouse Movement
Click
Keyboard
Screen Touch
Scroll

Event Collection Period

Specify the time period that the events will be collected from the client.

Bot Effective Time

For the identified bot, choose the time period before FortiWeb Cloud tests and verifies the bot again.

Click +Create Rule.
For URL, enter the literal URL, such as /index.php, or a regular expression, such as ^/*.php that the HTTP request must contain in order to match the rule. Multiple URLs are supported.
Click OK.

Select the action that FortiWeb Cloud takes when it detects a violation of the rule from the top right corner.
To configure the actions, you must first enable the Advanced Configuration in Global > System Settings > Settings.

Alert	Accept the request and generate an alert email and/or log message.
Alert & Deny	Block the request (or reset the connection) and generate an alert email and/or log message.
Deny(no log)	Block the request (or reset the connection).

Click SAVE.

Previous

Next

Biometrics Based Detection

By checking the client events such as mouse movement, keyboard, screen touch, and scroll, etc in specified period, FortiWeb Cloud judges whether the request comes from a human or from a bot.

Go to BOT MITIGATION > Biometrics Based Detection.
You must have already enabled this module in Add Modules. See How to add or remove a module.

Configure these settings.

Monitor Client Events

Select at least one client event according to your need.

Mouse Movement
Click
Keyboard
Screen Touch
Scroll

Event Collection Period

Specify the time period that the events will be collected from the client.

Bot Effective Time

For the identified bot, choose the time period before FortiWeb Cloud tests and verifies the bot again.

Click +Create Rule.
For URL, enter the literal URL, such as /index.php, or a regular expression, such as ^/*.php that the HTTP request must contain in order to match the rule. Multiple URLs are supported.
Click OK.

Select the action that FortiWeb Cloud takes when it detects a violation of the rule from the top right corner.
To configure the actions, you must first enable the Advanced Configuration in Global > System Settings > Settings.

Alert	Accept the request and generate an alert email and/or log message.
Alert & Deny	Block the request (or reset the connection) and generate an alert email and/or log message.
Deny(no log)	Block the request (or reset the connection).

Click SAVE.

Previous

Next